The Los Angeles Unified School District, the second-largest school district in the U.S., said it had confirmed “an external cyberattack” on its information-technology infrastructure. Despite the disruption, the LAUSD said schools will open as scheduled on Tuesday, Sept. 6.
The school district, in a notice late Monday, said it “detected unusual activity in its Information Technology systems over the weekend” and said the incident is “likely criminal in nature.” The LAUSD said it assessing the situation with local law enforcement agencies and has been working with officials from the Department of Education, the FBI and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA).
The school district did not provide details of the ransomware attack or which systems specifically have been affected. On Tuesday, LAUSD said that all students and employees are required to change their passwords for @lausd.net accounts.
The LAUSD said it is “immediately establishing a plan of action, informed by top public and private sector technology and cyber security professionals, to determine additional protections for the District, and to provide an independent opinion on system-wide protective measures.”
Even with the cyberattack, the school district said it expected “uninterrupted instruction and staffing” for Tuesday. Ransomware is a type of cyberattack that demands the target pays a ransom to access encrypted files that have hijacked by an attack.
The Los Angeles Unified School District serves more than 600,000 students in kindergarten through 12th grade at more than 1,000 schools. The district also has more than 200 independently operated public charter schools, authorized by the Los Angeles Unified School District Board of Education. Los Angeles Unified’s boundaries stretch across 720 square miles and include the City of Los Angeles as well as all or parts of 31 municipalities and several unincorporated regions of Southern California.
