Alamo Heights ISD Reports Data Breach Following Ransomware Attack
Alamo Heights Independent School District (ISD) reported a data breach impacting over 26,000 people, disclosed to the Texas Attorney General's office on June 25, 2026 (published June 26, 2026 UTC). The breach was linked to a ransomware attack by the Qilin group, which occurred on April 9, 2026. The compromised information included names, Social Security numbers, driver's license numbers, and bank and medical information.
Signal context
First seen: Jun 26, 2026
Last updated: Jun 26, 2026
Status: Public signal
Key points
- Ransomware attack by Qilin group.
- Over 26,000 individuals affected.
- Exposed names, Social Security numbers, driver's license numbers, bank information, and medical information.
Signal analysis
BetaThis analysis groups the signal by industry, likely incident action and impacted security area. It helps compare this signal with other published signals without treating the labels as final determinations.
Sector: Finance and Insurance
Likely country: Location not provided
Watch ransomware, endpoint compromise and business interruption exposure.
- Source type: outside the affected organization
Impact area: Confidentiality, Availability
Likely asset: User or customer data
- 21 signals in the same sector
- 100 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
26K+ people impacted by data breach at Alamo Heights ISD, Texas attorney general sayshttps://www.ksat.com/news/local/2026/06/26/data-breach-affects-more-than-26k-at-alamo-heights-isd-paxton-says/Public source from ksat.com.
Experts share tips to protect against identity theft after ransomware attack on Alamo Heights ISD | kens5.comhttps://consent.youtube.com/ml?continue=https://www.youtube.com/c/kens5?cbrd%3D1&gl=NL&hl=nl&cm=2&pc=yt&src=1&escs=AZ8E49BGbOf-LFVeysGhpa-AgHBUhfZBchS0Cx9nEe9ZSpV-FpGN6odocg8fAvyptjElJ-3MKXi7cU-gLPhiFK03yZ6rYFHb61jlPublic source from consent.youtube.com.
Related signals
Grouped by why the signal is relevant.
Council of Europe Suffers Data Breach, ShinyHunters Claims Exfiltration of HR and Payroll Data
The Council of Europe was reported to be a victim of a ransomware attack around June 1, 2026, with the ShinyHunters group claiming responsibility. The attackers allegedly exfiltrated 297 GB of data, including 429,000 files, comprising payslips, HR records, CVs, and financial information. Public reporting indicates a June 2026 intrusion, followed by phased disclosure and system hardening.
Beacon Mutual Insurance Co. Ransomware Attack Compromises 131,000 Rhode Islanders' Data
Beacon Mutual Insurance Co., Rhode Island's largest workers' compensation insurer, disclosed that highly sensitive personal information belonging to over 131,000 Rhode Islanders was compromised in a ransomware attack earlier in the year. An unauthorized person gained access to the company's system between January 7th and January 14th, accessing files containing names, Social Security numbers, driver's license numbers, financial account numbers, health insurance information, and/or medical treatment details.
Challenge Manufacturing Data Breach Exposes Social Security Numbers
Challenge Manufacturing, an automotive manufacturing company, disclosed a data breach to the Texas Attorney General on June 26, 2026. The Chaos ransomware group claimed responsibility on May 17, 2026, stating they obtained 270 GB of data from the company's systems.
INC Ransom group leaks Sandhills Medical Foundation patient data
The INC Ransom ransomware group leaked stolen data belonging to Sandhills Medical Foundation patients on June 15, 2026. The breach, which originated from a ransomware attack discovered in May 2025, affected approximately 169,000 individuals, exposing sensitive personal and health information.
Kodak Hit by Ransomware Attack, ShinyHunters Claims 2.2 Million Records Stolen
Kodak was listed among major cyberattacks on June 1, 2026, with reports indicating the company became a victim of a ransomware attack carried out by the ShinyHunters group. While Kodak officially confirmed the breach later in June, stating an unauthorized third party gained temporary access to a limited amount of company data, ShinyHunters claimed to have stolen over 2.2 million records containing customer personally identifiable information (PII) and internal corporate data.
Fluke Corporation Discloses Data Breach Affecting 18,000 Individuals; Clop Ransomware Claims Responsibility
Fluke Corporation notified over 18,000 individuals of a data breach that originally occurred in August 2025. The breach, which reportedly lasted two months, compromised highly sensitive personal information including Social Security Numbers (SSNs), birth dates, and self-identified disability status. The incident was attributed to an exploited vulnerability in a third-party application used by the company. The Clop ransomware group claimed responsibility for the breach, listing Fluke Corporation on its dark web leak site.