LEAD School (leadschool.in)

Group

shadowbyt3$

Status

Data leaked

Sector

Business Services

Listed on leak site

Jun 3, 2026

LEAD School is an educational platform/network operating multiple affiliated private schools across India (including locations in Telangana). The platform provides academic management, curriculum delivery (ELGA tiers), and administrative services to partner schools such as Arya Vidyapith, Aakarsh International Public School, Students High School, Rainbow International Matric Hr. Sec. School, and Vignan Private School.

shadowbyt3$ claims to have exfiltrated 765.9 MB of data from leadschool.in, including comprehensive personally identifiable information of students and parents, academic records, proprietary curriculum metrics, and internal school administrative data from the nucleus.leadschool.in portal.

• Student names and demographics
• Student dates of birth
• Student residential addresses and postal codes
• Student grade levels and class assignments
• Parent/guardian full names
• Parent/guardian mobile phone numbers
• Parent/guardian email addresses
• Academic progression records
• ELGA curriculum tier classifications
• Classroom performance analytics
• Teacher lesson plans and training modules
• Student assessments and reports
• Teacher certificates
• Placement data

Company Site: leadschool.in size: 765.9MB This is will be quick. The following schools are affected: The specific schools explicitly named in the exfiltrated folders include: - Arya Vidyapith - Aakarsh International Public School - Students High School - Rainbow International Matric Hr. Sec. School - Vignan Private School The following info was stolen: 1. Personally Identifiable Information (PII) of Students - Full Names and Demographics: Complete names of children sorted by gender and admission numbers. - Academic Progression: Exact tracking of student grade levels (e.g., SKG, Class 1, Class 2) and division assignments - Age and Vital Records: Exact dates of birth (DOB) for all enrolled students. - Physical Locations: Full residential addresses, cities/districts (such as Nampally, Telangana), and exact localized postal pincodes 2. Guardian and Parent Contact Registries - Parent Identity: Full names of both fathers and mothers linked directly to their children. - Direct Contact Methods: Active personal mobile numbers for parents, creating a severe vulnerability for automated spam or voice-phishing attacks. - Digital Contact: Parent email addresses intended for formal school updates. - Student Led Events - Teacher Certificates - gac-reports - Assessments 3. Proprietary LEAD School Academic Metrics - ELGA Placement Data: Internal academic tracking metrics, showing specific curriculum tiers like "ELGA Class" (e.g., ELGA02, ELGA06) and "ELGA Division" for individual students. - Classroom Analytics: Operational performance data exfiltrated directly from the nucleus.leadschool.in administrative portal. - Teacher Resources: Lesson plans, training modules, and classroom resources that form the core commercial assets of the LEAD platform.

This page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.