Ransomware victim disclosure
← All victimsInternational Community Schools
Claimed by NoEscape · listed 3 years ago
Status timeline
- ListedOct 23, 2023
- Data leakeddate unknown
At a glance
- Group
- NoEscape
- Status
- Data leaked
- Country
- United Arab Emirates
- Sector
- Education
- Listed on leak site
- Oct 23, 2023
About the victim
AI dossier — public-source company profileInternational Community Schools (ICS) is a private educational institution based in Abu Dhabi, UAE, operating seven branches (Mushrif, Al Danah, Al Falah City, Khalifa, Al Manhal, Al Maharat, and a Nursery) and serving students from Pre-KG/FS1 through Grade 12/Year 13. ICS offers multiple accredited curricula including American, British, Advanced Placement (AP), International Baccalaureate (IB), and UAE Ministry of Education programmes. The network serves thousands of students of diverse nationalities and is described as an established and rapidly growing community in the UAE.
- Industry
- Private K-12 Education
- Address
- Abu Dhabi, United Arab Emirates
Attack summary
Severity: high — Data has been published by the ransomware group against an educational institution holding PII for minors (students) and their families across multiple school branches, constituting significant exposure of sensitive personal data including children's records, which carries elevated regulatory and safeguarding risk.NoEscape claims to have compromised International Community Schools and has published data (disclosed status: data_published), indicating exfiltration of school data; no ransom amount or specific data volume was stated in the post.
Data the group says was taken
AI dossier — extracted from the leak post- Student records
- Parent/guardian information
- Staff/employee data
- Academic records
- Admissions data
- Financial records
What the group claims
International Community Schools (ICS), Abu Dhabi, has rooted a historic and enviable reputation for providing high-quality private education for students of all ages, rangi...
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

