What caused the internet outage at Denmark School District?

The outage was caused by a cyber incident that the INC Ransom group claims was a ransomware attack involving file encryption and data exfiltration.

How much data did the attackers claim to steal?

The INC Ransom group claims to have acquired approximately 70.76 GB of data from the district's systems.

How did the school operate during the outage?

Teachers and students were forced to rely on paper-based workarounds for five school days while internet services were offline.

Has the Denmark School District confirmed the data breach?

The district acknowledged a 'cyber incident' but has not officially confirmed the ransomware claims or the extent of data theft.

What should affected parents and staff do?

Affected individuals are advised to monitor financial accounts for suspicious activity and consider placing fraud alerts or credit freezes on their files.

Incident

Denmark School District Hit by Weeklong Outage Following Incident Claimed by INC Ransom

published: March 3, 2026

Learn More

Denmark School District, a K-12 educational provider in Wisconsin, reports a cyber incident that disabled internet access for five school days starting January 30, 2026.

The INC Ransom group claimed responsibility for the attack on March 1, 2026, listing the district on its leak site.

The attack targeted the district's internal infrastructure. The outage forced teachers and students to use paper-based workarounds to continue classes during the disruption.

According to the groups claims, the stolen data includes:

70.76 GB of compressed archives and files
Internal administrative documents
Encrypted system records

The number of affected individuals is not disclosed. The district has not commented on the specifics of the breach. No public statement has addressed regarding any ransom demand or the potential exposure of student and staff records despite inquiries from security researchers.

Denmark School District Hit by Weeklong Outage Following Incident Claimed by INC Ransom

Read More
Seattle Public Library shuts down systems after ransomware …
Uffizi Galleries Targeted in Cyberattack and Ransomware Extortion …
Richland-Bean Blossom community school corporation data breach
Washington Center for Deaf & Hard of Hearing …
Trocaire College Ransomware Incident Exposes Data of 23,436 …