Financial, medical information stolen during cyber attack on Rainbow District School Board
The Rainbow District School Board,says the cyber criminals responsible for an attack on the board's computer systems earlier this month stole sensitive personal information belonging to staff and students – including social insurance numbers and bank account information belonging to current and former staff members; social insurance numbers belonging to former students who received scholarships; and medical information for current and former students.
The data breach affects people who worked for the board as early as 2010 and students who attended a school in the Rainbow District School Board as early as 2011.
"We take this matter very seriously and apologize to all those who are affected," the board wrote in a notice posted to its website on Thursday.
"We understand this news will be as concerning to you as it is to us and we are deeply sorry."
Hackers accessed SINs belonging to scholarship recipients
Criminals may have accessed the following information belonging to students, the board said:
Personal information, including contact information, birth dates, academic achievement data, Ontario Education Numbers and, in some cases, medical and immigration information for all students who graduated between June 2012 and June 2024.
Assessment information, medical diagnoses, health card numbers, behavioral information and information about accommodation and student support needs belonging to current and former students with identified exceptionality who have been enrolled in an Intensive Support Program (ISP) since 2019.
Contact information and place of employment information for parents of the above groups.
Social insurance numbers for former students who were enrolled in a Rainbow School since 2011 and who received a scholarship and a T4A slip for income tax purposes.
In addition, the attack exposed school photos from the 2012-2013 to 2024-2025 school years. However, those photos are not attached to names or other identifying information, the board said.
Anyone employed by the school from January 2010 onward is also affected, including full-time, part-time and occasional staff, it said.
Hackers accessed the following data:
Address and primary phone numbers of staff members from 2010 onward.
Social insurance numbers of staff members from 2012 onward.
Bank account numbers of staff members from August 2017 onward.
Employee ID/compensation and benefit information/Ontario Ministry Educator Number (for teachers only) and police background check information for employees from September 2018 onward.
In addition, they may have accessed medical information such as doctor notes, physical abilities forms and leaves of absence forms belonging to staff members from 2022 onward.
The Rainbow District School Board has reported the cyber crime to the Greater Sudbury Police Service and the Ontario Provincial Police, the board said.
It is offering a two-year TransUnion credit monitoring service, free of charge, to all current and former staff whose personal information was compromised.
It's offering the same service to affected scholarship recipients whose social insurance numbers have been compromised and who have reached the age of majority.
Former students who wish to sign up for the service should contact cyberincident@rainbowschools.ca, the board said. Staff and former students who believe they have been victims of identity theft related to the incident should email the same address.
The president of the Ontario Secondary School Teachers' Federation district serving Espanola, Manitoulin and Sudbury said he's heard from members who are concerned about the breach.
But Eric Laberge said some are also experiencing déjà vu.
Teachers hit with cyber attack previously
"This is something that they – for the most part, especially those that have been hired more than three years ago – have gone through already," Laberge said.
"Because there was a cyber incident with our provincial federation."
The Rainbow board began experiencingtechnical difficulties with its computer system on Friday, Feb. 7, officials said.
Officials took measures to protect the network and the data stored on it, they said, beginning a system-wide shutdown 10 a.m. that day at the Centre for Education and all 38 public schools in Sudbury, Espanola and on Manitoulin Island.
By mid-afternoon, the board had confirmed and announced that the technical difficulties were due to a cyber incident.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
CTV News
02-07-2025
- CTV News
Northern Ont. school board prepares for cellphone rule changes
After the province's decision to limit cellphones in schools, students will see their phones stored away this year. Lyndsay Aelick reports. Students in Ontario will be ringing in the new school year with their phones on silent or put away in lockers or assigned personal spaces next week as the Ministry of Education rolls out new cellphone rules across the province. 'For Grades, from kindergarten to Grade 6, students are asked to keep their phone, in their personal space. If they have a locker or a personal space, that's where their phone has to be,' said Bruce Bourget, Rainbow District School Board's director of education 'For Grades 7 to 12, It's the same. you know, the difference is before and after school, during lunchtime, there is permission to use it, but in a respectful way. The difference for us. That might be, noted from others is that we are not asking students to bring their phone to class and store them. We feel that that is not an effective use of time or funds.' Bourget told CTV News cellphone use will be permitted for educational purposes as directed by an educator and in specific situations for health and medical purposes. He said teachers will be the ones enforcing the rules with the focus first on education. 'The education piece is to say, you know, for the brief period of time during the day that you're in class, honor the moment, be present. Now, engage with your peers and your teachers and dig into the learning and not be distracted,' said Bourget. 'We're not looking to start with a punitive approach. If someone is persistent, there is progressive discipline.' Sarah Macdougall is an elementary school teacher in the board and a parent of teens, she told CTV News that she feels it's a good thing. 'From an educators perspective, we don't have to worry about managing the protocols it's already been outlined for us, so we don't have to worry about that,' she said. 'Then I also feel like as a parent of teenagers who are in high school I also see that they don't have to manage, what's cool or what's not. They just have to put their cellphones away. So walking back into that 2025 school year, we feel like, okay, teachers can teach, students can learn without that distraction.' However – not everyone feels it will be an easy transition. Several students told CTV News that that some of their peers may have a hard time with the change. Our cameras caught up with some students preparing for back to school and this is what some of them had to say: 'I see a lot of people that can't really like apart from their phone – well, I guess I am one of those people,' said one student. 'It makes sense because it has kind of gotten a problem, especially in the learning environment,' said another. 'But some like states or some areas are taking it too far.' The Rainbow District School Board put out a survey about the cellphone changes last spring which saw more than 2,000 people respond. The survey showed 85 per cent of parents felt phones are a distraction and 87 per cent said prolonged social media use is not good for mental health. For more details on the board's new cellphone policy and administrative procedures, visit their website.
CBC
20-02-2025
- CBC
Financial, medical information stolen during cyber attack on Rainbow District School Board
A major school board in the Sudbury area is offering more details on the severity of a recent cyber attack, and what information was compromised. The Rainbow District School Board,says the cyber criminals responsible for an attack on the board's computer systems earlier this month stole sensitive personal information belonging to staff and students – including social insurance numbers and bank account information belonging to current and former staff members; social insurance numbers belonging to former students who received scholarships; and medical information for current and former students. The data breach affects people who worked for the board as early as 2010 and students who attended a school in the Rainbow District School Board as early as 2011. "We take this matter very seriously and apologize to all those who are affected," the board wrote in a notice posted to its website on Thursday. "We understand this news will be as concerning to you as it is to us and we are deeply sorry." Hackers accessed SINs belonging to scholarship recipients Criminals may have accessed the following information belonging to students, the board said: Personal information, including contact information, birth dates, academic achievement data, Ontario Education Numbers and, in some cases, medical and immigration information for all students who graduated between June 2012 and June 2024. Assessment information, medical diagnoses, health card numbers, behavioral information and information about accommodation and student support needs belonging to current and former students with identified exceptionality who have been enrolled in an Intensive Support Program (ISP) since 2019. Contact information and place of employment information for parents of the above groups. Social insurance numbers for former students who were enrolled in a Rainbow School since 2011 and who received a scholarship and a T4A slip for income tax purposes. In addition, the attack exposed school photos from the 2012-2013 to 2024-2025 school years. However, those photos are not attached to names or other identifying information, the board said. Anyone employed by the school from January 2010 onward is also affected, including full-time, part-time and occasional staff, it said. Hackers accessed the following data: Address and primary phone numbers of staff members from 2010 onward. Social insurance numbers of staff members from 2012 onward. Bank account numbers of staff members from August 2017 onward. Employee ID/compensation and benefit information/Ontario Ministry Educator Number (for teachers only) and police background check information for employees from September 2018 onward. In addition, they may have accessed medical information such as doctor notes, physical abilities forms and leaves of absence forms belonging to staff members from 2022 onward. The Rainbow District School Board has reported the cyber crime to the Greater Sudbury Police Service and the Ontario Provincial Police, the board said. It is offering a two-year TransUnion credit monitoring service, free of charge, to all current and former staff whose personal information was compromised. It's offering the same service to affected scholarship recipients whose social insurance numbers have been compromised and who have reached the age of majority. Former students who wish to sign up for the service should contact cyberincident@ the board said. Staff and former students who believe they have been victims of identity theft related to the incident should email the same address. The president of the Ontario Secondary School Teachers' Federation district serving Espanola, Manitoulin and Sudbury said he's heard from members who are concerned about the breach. But Eric Laberge said some are also experiencing déjà vu. Teachers hit with cyber attack previously "This is something that they – for the most part, especially those that have been hired more than three years ago – have gone through already," Laberge said. "Because there was a cyber incident with our provincial federation." The Rainbow board began experiencingtechnical difficulties with its computer system on Friday, Feb. 7, officials said. Officials took measures to protect the network and the data stored on it, they said, beginning a system-wide shutdown 10 a.m. that day at the Centre for Education and all 38 public schools in Sudbury, Espanola and on Manitoulin Island. By mid-afternoon, the board had confirmed and announced that the technical difficulties were due to a cyber incident.
CBC
19-02-2025
- CBC
School bus driver faces 3 careless driving charges following January crash in Sudbury
Ontario Provincial Police have charged a school bus driver with three counts of careless driving following a crash in Sudbury's south end on Jan. 20. Seven students and the bus driver were taken to hospital following the crash involving a commercial vehicle. The bus driver was treated for life-threatening injuries. Following an investigation, police charged the 50-year-old driver with three counts of careless driving causing bodily harm. At the time of the crash there were 12 students aboard the bus. Sudbury Student Services Consortium, which manages school buses for the four school boards in the region, said some students on the bus were from the Rainbow District School Board and some from the French public board, known as Conseil Scolaire du Grand Nord. Renée Boucher, the consortium's executive director, told CBC News she's worked at the transportation service since 2003, and this was the first time she's had to deal with a serious crash. "We've had other collisions in the past and we've had minor collisions, minor injuries, but this is the first," she said. "So it's very difficult, of course, for everyone."
