PYSA has been seen in attacks on schools in 12 U.S. states and in the UK in March alone. The attacks have cast a wide net, hitting higher education, K-12 schools and seminaries. The unknown cyber-adversaries have targeted a handful of government entities, healthcare and private companies, the FBI said. The cyber-actors use open-source tools to deactivate antivirus capabilities on the victim network and exfiltrate files, the Feds said.
Source: https://threatpost.com/pysa-ransomware-education-feds-warn/164832/