(CBS) -- Cases of cyber ransomware are on the rise during the pandemic. Criminals are targeting hospitals and schools, with vulnerable remote learning environments. Federal officials expect that will continue through the 2021 academic year.

Teachers in Huntsville, Alabama are printing their lessons on paper after cyber criminals hit the district with a ransomware attack locking down the computer network. "It's terrible to see a district with some motivated employees moving forward to then have one more obstacle like this," says William Tunnell with the Alabama Education Association.

Officials are not revealing how much ransom the hackers demand, but Huntsville is far from alone. School computer systems in Baltimore County and Hartford, Connecticut were also hit this year.

Cyber security expert Scott Schober says municipalities, businesses, and even hospitals are ransomware targets. Criminals often send a fake email to employees with a link. Clicking on it downloads malware and allows the hacker into the network. "And now the cybercriminal works laterally through the computer networks to then find the target machine or machines and then encrypt the data and send them the ransom note," says Schober.

Some ransom notes demand money to restore access to the computer network. Internet security company SonicWall says cases surged 40 percent this year. The average payment also climbed from a few thousand dollars in 2018 to more than 230-thousand dollars. Schober says, "Usually it's done with digital currency, crypto currency, bitcoin is the preferred choice so the criminals can remain anonymous."

Security experts say it's vital for hospitals and every business to have a strong network backup system to thwart ransomware attacks. In October, the Departments of Justice and Homeland Security warned of coordinated cyber-attacks on the healthcare industry.

Copyright 2020 CBS Interactive.  All rights reserved.

Recommended for you

(1) comment


As an experienced IT professional I can tell you that these attacks can only succeed with a combination of gullible user and ineffective IT staff. Reporters, be relentless in finding the facts and hold these folks accountable. Framing the company or agency as a victim without stressing the FACT that they are partially responsible for their plight is lazy journalism

Welcome to the discussion.

Keep it Clean. Please avoid obscene, vulgar, lewd, racist or sexually-oriented language.
Don't Threaten. Threats of harming another person will not be tolerated.
Be Truthful. Don't knowingly lie about anyone or anything.
Be Nice. No racism, sexism or any sort of -ism that is degrading to another person.
Be Proactive. Use the 'Report' link on each comment to let us know of abusive posts.
Share with Us. We'd love to hear eyewitness accounts, the history behind an article.