Ransomware victim disclosure
← All victimsLaurens School District 56
Claimed by Medusa · listed 1 year ago
Status timeline
- ListedFeb 25, 2025
- Data leakeddate unknown
At a glance
- Group
- Medusa
- Status
- Data leaked
- Country
- United States
- Sector
- Education
- Listed on leak site
- Feb 25, 2025
- Data size
- 2.40 TB
- Records
- 118 employees
About the victim
AI dossier — public-source company profileLaurens County School District 56 is a public school district serving approximately 2,800 students in Laurens County, South Carolina. The district operates five elementary schools, one middle school, one high school, and a child development center from its administrative office in Clinton, SC.
- Industry
- Public Education
- Address
- 100 Old Colony Rd, Clinton, SC 29325, United States
- Employees
- 118
Attack summary
Severity: critical — Public school district with ~2,800 students; confirmed exfiltration of 2.40 TB suggests large-scale collection of student PII, educational records, and potentially staff/family data. Educational records of minors constitute highly regulated sensitive information.Medusa claims to have exfiltrated 2.40 TB of data from the district. The group has published the data; no ransom demand is noted.
Data the group says was taken
AI dossier — extracted from the leak post- student records
- employee information
- administrative files
- financial data
What the group claims
Laurens School District 56 is a school district in South Carolina (Laurens County) which has about 2,800 students. Laurens County School District 56 corporate office is located in 211 N Broad St, Clinton, South Carolina, 29325, United States and has 118 employees. The total amount of data leakage is 2.40 TB
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

