The ransomware attack targeted the public school district Istituto Comprensivo di Cavaglià in Italy, carried out by the threat actor safepay, potentially compromising sensitive student and staff data. The incident underscores the ongoing cybersecurity risks faced by educational institutions in Italy. #Italy
Incident Details
- Victim: istitutocomprensivo-cavaglia.edu.it
- Country: IT
- Actor: safepay
- Source: http://safepaypfxntwixwjrlcscft433ggemlhgkkdupi2ynhtcmvdgubmoyd.onion/blog/post/istitutocomprensivo-cavagliaeduit/
- Discovered: 2025-11-18 21:15:50.178116
- Published: 2025-11-18 21:15:36.942117
Information
- The institution was targeted by a ransomware attack.
- The attacker identified is SafePay.
- The victim is a public school district located in the Biella province of Piedmont, Italy.
- The school district serves students from the local community.
Disclaimer: This post is based on public claims made by the ransomware group "safepay". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.