APT / THREAT GROUP
District
1
aliases
Intelligence Profile
Ransomware
Threat Analysis
District is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning District
Ex-school district employee jailed for hacks on former employer
BleepingComputer· Jun 13, 2026
Meta settles school district lawsuit claiming addictive design harmed students' mental health
The Record· May 22, 2026
Microsoft disrupts Fox Tempest malware-signing-as-a-service platform tied to ransomware gangs
The Record· May 19, 2026
What Is the Instructure Canvas Breach? Impact, Risks, and What Institutions Should Do
Trend Micro Research· May 9, 2026
Canvas Breach Disrupts Schools & Colleges Nationwide
Krebs on Security· May 7, 2026
Instructure hacker claims data theft from 8,800 schools, universities
BleepingComputer· May 5, 2026
62 people indicted by Taiwanese prosecutors over ties to cyber scam company Prince Group
The Record· Mar 5, 2026
Quick Facts
TypeAPT / Threat Group
Aliases1
Also Known As
District
Research Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.