Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

55,000 Impacted by Cyberattack on California School Association 

The Association of California School Administrators (ACSA) is informing nearly 55,000 individuals that they have been impacted by a ransomware attack.

The Association of California School Administrators (ACSA) is informing nearly 55,000 individuals that their information may have been compromised as a result of a cyberattack.

ACSA describes itself as the largest umbrella association for school leaders in the United States, serving more than 17,000 California educators, including superintendents, principals, vice-principals, and classified managers.

The incident occurred last year. ACSA discovered on September 24, 2023, that some files in its environment had been encrypted, which indicates that the organization was targeted in a ransomware attack. 

An investigation revealed that a threat actor had gained access to ACSA systems between September 23 and 24, and they accessed and possibly exfiltrated certain types of information. 

The exposed files contained information such as name, address, date of birth, Social Security number, driver’s license number, payment card information, medical information, health insurance information, tax ID, student report card and test score, employer-assigned identification number, and online account credentials. 

ACSA completed its investigation and identified the impacted individuals in early May 2024, when it started notifying them about the data breach.

The organization told the Maine Attorney General that roughly 54,600 people are affected.

ACSA said it found no evidence of “any actual or attempted identity theft or fraud as a result of this event”, but impacted individuals are being provided credit monitoring services for 12 months.

Advertisement. Scroll to continue reading.

The Association of California School Administrators does not appear to have been listed on the website of any known ransomware group. 

Related: Ransomware Leads to Nantucket Public Schools Shutdown

Related: Computer Attack Disables California School District’s System

Related: K-12 Schools Improve Protection Against Online Attacks, but Many Are Vulnerable to Ransomware Gangs

Related: 900 US Schools Impacted by MOVEit Hack at National Student Clearinghouse

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Learn how to utilize tools, controls, and design models needed to properly secure cloud environments.

Register

Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

People on the Move

SaaS security company AppOmni has hired Joel Wallenstrom as its General Manager.

FTI Consulting has appointed Brett Callow as Managing Director in its Cybersecurity & Data Privacy Communications practice.

Mobile security firm Zimperium has welcomed David Natker as its VP of Global Partners and Alliances.

More People On The Move

Expert Insights