In June 2024, the Alvin Independent School District in Texas suffered a ransomware attack attributed to the Fog gang. The incident compromised sensitive records belonging to 47,606 individuals, including names, Social Security numbers, state‐issued IDs, credit and debit card details, financial account numbers, medical records, and health insurance information. The district confirmed the breach and began notifying affected individuals, while Fog claimed to have extracted 60 GB of data and published the district’s name on its leak site to pressure payment. The attack was first reported by the Texas attorney general in May 2025, though Fog took responsibility in July 2024. AISD has not disclosed whether a ransom was paid. While many victims in the education sector have faced similar demands, the AISD breach stands out for the volume and sensitivity of the data exposed, raising concerns over identity theft, fraud, and privacy violations. The district continues to coordinate with law enforcement and cybersecurity experts even as it works to strengthen its defenses.
Source: https://www.infosecurity-magazine.com/news/texas-school-47000-people-data/
TPRM report: https://scoringcyber.rankiteo.com/company/alvin-independent-school-district
"id": "alv846050725",
"linkid": "alvin-independent-school-district",
"type": "Ransomware",
"date": "5/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 47606,
'industry': 'Education',
'location': 'Texas, USA',
'name': 'Alvin Independent School District',
'type': 'Educational Institution'}],
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': 47606,
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information',
'Financial Information',
'Medical Information']},
'date_detected': 'June 2024',
'date_publicly_disclosed': 'May 2025',
'description': 'In June 2024, the Alvin Independent School District in Texas '
'suffered a ransomware attack attributed to the Fog gang. The '
'incident compromised sensitive records belonging to 47,606 '
'individuals, including names, Social Security numbers, '
'state‐issued IDs, credit and debit card details, financial '
'account numbers, medical records, and health insurance '
'information. The district confirmed the breach and began '
'notifying affected individuals, while Fog claimed to have '
'extracted 60 GB of data and published the district’s name on '
'its leak site to pressure payment. The attack was first '
'reported by the Texas attorney general in May 2025, though '
'Fog took responsibility in July 2024. AISD has not disclosed '
'whether a ransom was paid. While many victims in the '
'education sector have faced similar demands, the AISD breach '
'stands out for the volume and sensitivity of the data '
'exposed, raising concerns over identity theft, fraud, and '
'privacy violations. The district continues to coordinate with '
'law enforcement and cybersecurity experts even as it works to '
'strengthen its defenses.',
'impact': {'data_compromised': ['Names',
'Social Security numbers',
'State‐issued IDs',
'Credit and debit card details',
'Financial account numbers',
'Medical records',
'Health insurance information'],
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'investigation_status': 'Ongoing',
'motivation': 'Financial Gain',
'ransomware': {'data_exfiltration': 'Yes', 'ransom_demanded': 'Yes'},
'references': [{'date_accessed': 'May 2025',
'source': 'Texas Attorney General'}],
'response': {'communication_strategy': ['Notifying affected individuals'],
'law_enforcement_notified': 'Yes',
'remediation_measures': ['Strengthening defenses']},
'threat_actor': 'Fog gang',
'title': 'Ransomware Attack on Alvin Independent School District',
'type': 'Ransomware Attack'}