Home > Security > Security News

Kalamazoo Public Schools District Cyber Attack Claimed by the Interlock Ransomware Group

Published on May 24, 2025
Written by:
Vishwa Pandagle
Vishwa Pandagle
Cybersecurity Staff Editor
Power Outage

The cybersecurity incident that was confirmed and announced by the Kalamazoo Public School District (KPS) this April has recently been claimed by the Interlock ransomware group. The district that operates over 20 public schools lost internet connectivity, impairing email access. 

The Interlock ransomware group operates under the Ransomware-as-a-Service (RaaS) model and encrypts files with the “.interlock” extension. The group gains initial access to a system by offering fake Google Chrome or Microsoft Edge software updates, as detailed in a Cyble report.

Back in April, the district noted that it suffered a network security incident; however, officials believed that it was not a targeted attack against KPS, according to a letter sent to employees and families.

Screenshot of the outage alert posted on the school district's website
Screenshot of the outage alert posted on the school district's website | Source: News Channel 3 WWMT-TV

Classes and phone systems remained open while conferences were cancelled. Kalamazoo suffered a targeted attack impacting about 12,000 students' privacy.

An alert posted on the school district's website stated that the internet outage continued to impact the connectivity until May 1.

Screenshot of the alert addressing the PowerSchool incident
Screenshot of the alert addressing the PowerSchool incident | Source: Kalamazoo Public Schools website

In January, KPS informed about the PowerSchool data breach because the latter provided them with student information management software. The alert noted that threat actors gained access to its customer data, potentially including Kalamazoo Public Schools.

Although a U.S. college student was held who admitted in federal court that he extorted PowerSchool, the impact of the data breach remained unclear. Matthew Lane, 19, gained access to PowerSchool in September by using a compromised contractor's credentials. 

Lane with fellow conspirators demanded $2.85 million in ransom against the stolen data. TechNadu reported that multiple school districts were impacted by the breach and were sent ransom notes for stolen data.

We approached the Kalamazoo Public Schools District for a statement. We will update this report after receiving a response.

Add a Comment
Related
KIA Keyless Entry System Security Flaw Exposes Vehicles in Ecuador to Theft Risk
Spanish police iptv
Threat Actor ‘Cargo’ Claims Breach of Spain’s Policía Nacional and Credential Exfiltration
Operation Deep Sentinel: European Crackdown Dismantles Longest-Running Dark Web Drug Market ‘Archetyp’
Washington Post Investigates Cyberattack Targeting the Organization’s Journalists 
GrayAlpha Deploys NetSupport RAT to Organizations via Fake Browser Updates, 7-Zip Downloaders
CyberVolk Declares Cyberwar Against Europe, Japan and the U.S. Under Operation BlackEye
Most Popular
India Introduces 'Superlative Injunction' to Combat Online Piracy on Mobile Apps and Websites
KIA Keyless Entry System Security Flaw Exposes Vehicles in Ecuador to Theft Risk
Spanish police iptv
Threat Actor ‘Cargo’ Claims Breach of Spain’s Policía Nacional and Credential Exfiltration
Operation Deep Sentinel: European Crackdown Dismantles Longest-Running Dark Web Drug Market ‘Archetyp’
ISP Piracy Liability and Record Labels Face a Landmark Legal Dispute as US Government Sides with Cox
movies 2025
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates
India Introduces 'Superlative Injunction' to Combat Online Piracy on Mobile Apps and Websites
KIA Keyless Entry System Security Flaw Exposes Vehicles in Ecuador to Theft Risk
Threat Actor ‘Cargo’ Claims Breach of Spain’s Policía Nacional and Credential Exfiltration
Operation Deep Sentinel: European Crackdown Dismantles Longest-Running Dark Web Drug Market ‘Archetyp’
ISP Piracy Liability and Record Labels Face a Landmark Legal Dispute as US Government Sides with Cox
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates

Most Popular
India Introduces 'Superlative Injunction' to Combat Online Piracy on Mobile Apps and Websites
KIA Keyless Entry System Security Flaw Exposes Vehicles in Ecuador to Theft Risk
Spanish police iptv
Threat Actor ‘Cargo’ Claims Breach of Spain’s Policía Nacional and Credential Exfiltration
Operation Deep Sentinel: European Crackdown Dismantles Longest-Running Dark Web Drug Market ‘Archetyp’
ISP Piracy Liability and Record Labels Face a Landmark Legal Dispute as US Government Sides with Cox
movies 2025
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates
India Introduces 'Superlative Injunction' to Combat Online Piracy on Mobile Apps and Websites
KIA Keyless Entry System Security Flaw Exposes Vehicles in Ecuador to Theft Risk
Threat Actor ‘Cargo’ Claims Breach of Spain’s Policía Nacional and Credential Exfiltration
Operation Deep Sentinel: European Crackdown Dismantles Longest-Running Dark Web Drug Market ‘Archetyp’
ISP Piracy Liability and Record Labels Face a Landmark Legal Dispute as US Government Sides with Cox
2025 Movie Release Dates: Calendar for Theatrical and Streaming Dates

TechNadu keeps you informed with the latest in cybersecurity, VPNs, streaming, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2025 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: