hiveleak attacks Montour School District Bus Garage

Incident Date:

January 25, 2022

World map



hiveleak attacks Montour School District Bus Garage


Montour School District Bus Garage




McKees Rocks, USA

pennyslvania, USA

First Reported

January 25, 2022

Montour School District Bus Garage Targeted by Hiveleak Ransomware Group

Victim Overview

Montour School District is a public school district located in Pennsylvania, serving approximately 10,000 students. The district has faced significant disruptions due to the ransomware attack, which has affected the operability of certain computer systems. Despite these challenges, the district has managed to keep its doors open and maintain a regular schedule for students.

Vulnerabilities and Impact

The attack on Montour School District Bus Garage highlights the increasing threat of ransomware attacks on educational institutions. In the last school year, numerous schools across the United States experienced outages and data theft. The Montour School District has been working with third-party forensic specialists to investigate the event and restore full functionality to its systems.

Hiveleak Ransomware Group

Hiveleak is a ransomware group that has been active in targeting various organizations, including educational institutions. The group has added dozens of K-12 schools to its leak sites, causing significant disruptions and data breaches.

The Montour School District Bus Garage attack serves as a reminder of the ongoing threat of ransomware attacks on educational institutions. Despite the challenges posed by these attacks, the Montour School District has managed to maintain its operations and keep its doors open for students.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.