A cyberattack on Berchem school has raised serious concerns after hackers demanded ransom money not only from the institution but also directly from students’ families. The Berchem school cyberattack incident occurred at the secondary school Onze-Lieve-Vrouwinstituut Pulhof (OLV Pulhof), where attackers disrupted servers and later threatened to release sensitive information unless payments were made.
The case, confirmed by the public prosecutor’s office and first reported by ATV, highlights the growing threat of ransomware attacks on schools, where cybercriminals increasingly target educational institutions due to their reliance on digital systems and the sensitive data they store.
Cyberattack on Berchem School Disrupted Servers
The Berchem school hacking incident took place shortly after the Christmas holidays, in early January. According to reports, the school’s servers were taken offline, causing disruption to internal systems.
Hackers reportedly demanded a ransom from the school soon after the breach. However, the institution refused to comply with the demands.
This decision appears to have triggered an escalation in the attackers’ strategy, shifting pressure onto parents.
School Files Police Complaint After Ransom Demand
Following the cyberattack on Berchem school, OLV Pulhof acted quickly by contacting law enforcement. The school filed a formal complaint against unknown persons and brought in the police’s Regional Computer Crime Unit (RCCU) to respond to the incident.
In addition to involving authorities, the school also moved to secure its digital infrastructure.
Out of concern for student safety and data protection, the institution reportedly set up a new, secure network environment soon after the breach.
The incident is now under investigation by the Federal Judicial Police.
Hackers Target Parents With €50 Per Child Ransom Demand
This week, the cybercriminals expanded their attack by sending threatening messages directly to parents of students.
The hackers demanded a ransom of 50 euros per child, warning that private information such as addresses or photos could be released if the payment was not made.
A student described the situation, saying that the school required everyone to change passwords and warned students not to click on suspicious links.
“We had to change all our passwords at school, otherwise they would release our addresses or photos,” the student said.
Another student added that their father received an email demanding payment, which caused fear and uncertainty.
“My dad also got an email last night. That scares me a little. They were asking for 50 euros per child.”
This tactic reflects a disturbing trend in school cyberattacks, where criminals attempt to exploit families emotionally and financially.
Parents Advised Not to Pay and Not to Click
The school has strongly advised parents not to respond to the ransom demands.
Families were told not to pay, and more importantly, not to click on any links or attachments included in the hackers’ communications, as these could lead to further compromise or malware infections.
Cybersecurity experts generally warn against paying ransoms, as it does not guarantee that stolen data will be deleted or that systems will be restored. Paying can also encourage attackers to continue targeting schools and vulnerable communities.
Classes Continue Despite Cybersecurity Incident
Despite the attack, lessons at OLV Pulhof have continued. While the school’s servers were initially down, it appears that temporary solutions and new systems allowed teaching to proceed.
However, the full consequences of the hacking have not yet been disclosed. It remains unclear what data may have been accessed or whether any personal information was stolen.
Educational institutions often store sensitive records, including student details, contact information, and internal documents, making them attractive targets for cybercriminal groups.
Rising Concern Over Ransomware Attacks on Schools
The cyberattack on the Berchem secondary school is part of a wider pattern of increasing cybercrime targeting schools across Europe.
Schools often face limited cybersecurity budgets, older IT systems, and large networks of users, making them easier to infiltrate than larger corporate organizations.
Attacks like this demonstrate how ransomware incidents can go beyond technical disruption, affecting families and creating fear in local communities.
Investigation Ongoing
Authorities have not yet identified who is behind the attack. The Federal Judicial Police continue to investigate, while the school works to strengthen its systems and protect students and staff.
For now, parents are being urged to remain cautious, avoid engaging with the attackers, and report any suspicious communications to law enforcement.
The cyberattack on Berchem school incident serves as a reminder that cybersecurity in schools is no longer optional, but essential for protecting students, families, and the education system itself.