A recent ransomware attack has caused Blacon High School, located on the outskirts of Chester, to close temporarily. Initially, the school planned to reopen after two days of closure, on January 19, 2025, but recent developments indicate that the shutdown could extend for a longer period, potentially affecting the school’s operations into the following week.
The cyberattack, which occurred on January 17, 2025, was carried out by a file-encrypting malware group. According to early assessments, Blacon High School was expected to resume classes on Monday and Tuesday of this week. However, further investigations and analysis, now being conducted by a third-party forensic firm, have revealed that recovery is taking longer than anticipated. As a result, the exact timeline for restoring the school’s systems remains unclear. The school’s IT staff are working tirelessly, operating around the clock, to recover the encrypted data and restore essential applications as quickly as possible.
Rachel Hudson, the headteacher of Blacon High School, has assured the public that more updates regarding the situation will be provided soon. She indicated that the school may not reopen until after Thursday this week, emphasizing the uncertainty surrounding the recovery process.
While no specific ransomware group has publicly taken credit for the attack, security experts believe that the Medusa ransomware gang may be responsible. This group recently targeted Gateshead Council, demanding a $600,000 ransom to prevent the stolen data from being leaked or sold. Another group, the Inc Ransom gang, is also under suspicion due to its involvement in several cyber incidents, including attacks on two London-based hospitals connected to the NHS.
Cybersecurity experts have long warned that schools and educational institutions in the UK are vulnerable to such attacks. Jake Moore, the head advisor at ESET, highlighted in December 2024 that many schools, particularly in the London area, lack the financial resources to adequately protect their digital infrastructure. As ransomware gangs increasingly target these organizations, experts predict that similar attacks will rise in 2025, with hackers continuing to refine their tactics to maximize financial gain.
This attack underscores the growing concern over the security of educational institutions and their ability to safeguard sensitive data against increasingly sophisticated cybercriminals. As schools work to recover from the attack, the broader education sector must consider investing in stronger cybersecurity measures to prevent future incidents.
