Highline Public Schools, a district serving approximately 17,500 students south of Seattle, announced the cancellation of classes for Monday following a cyberattack. The district, which had recently resumed classes on Wednesday, had been set to welcome kindergarteners for their first day of school.
In a statement released Sunday, Highline Public Schools revealed it had detected unauthorized activity within its technology systems. The district is taking immediate measures to isolate critical systems while collaborating with third-party experts, as well as state and federal partners, to safely restore and test its operational capabilities.
The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) highlights that school districts are attractive targets for cybercriminals due to the vast amounts of personal and financial data they manage, including sensitive information about students, educators, and school operations. CISA reports that on average, there is a cyberattack on K-12 schools more than once a day. Unfortunately, many districts often lack the necessary funding to implement robust cybersecurity measures.
As of Sunday afternoon, district specialists had not identified any theft of personal information belonging to staff or families, according to district spokesperson Tove Tupper. However, the attack has rendered critical systems inoperable, affecting communications, transportation logistics for school buses, and attendance record updates. “The closure impacts all school activities, athletics, and meetings for the district,” Tupper confirmed.
The incident mirrors a growing trend of cyberattacks targeting educational institutions. In 2023, Minneapolis Public Schools suffered a breach that exposed sensitive data online, including Social Security numbers and details related to school security and health records. Similarly, the Los Angeles United School District experienced a security breach two years ago, leading to reports of stolen information being sold on the dark web.
Cybersecurity vulnerabilities are not limited to educational institutions; other crucial public services such as ports, healthcare providers, and libraries are also at risk. Recently, the Port of Seattle and Seattle-Tacoma International Airport faced a cyberattack that disrupted Wi-Fi services and baggage handling, although security operations remained unaffected.
The Seattle Public Library system was similarly impacted by a ransomware attack in May, which took three months to resolve, highlighting the ongoing challenges faced by public institutions in safeguarding their digital infrastructure.
