Cyber Incident Victim: Windward

In early March 2021, multiple elite private schools in Los Angeles, including Windward School in Mar Vista, experienced unauthorized intrusions into their digital servers. The breach occurred in the weeks preceding March 4, with attackers accessing and exfiltrating sensitive staff payroll documentation. The perpetrators subsequently disseminated these records through email blasts containing explicitly racist, sexist, and homophobic language. Windward School, alongside the Center for Early Education in West Hollywood and Carlthorp School in Santa Monica, were confirmed as affected institutions serving children of entertainment industry executives and prominent public figures. Law enforcement agencies initiated investigations upon discovery of the incidents, though the specific intrusion methods and duration of unauthorized access remained undisclosed. The email campaigns distributing stolen data represented the primary observable attacker action following the initial compromise.

The incident exposed confidential employee financial records, potentially compromising staff privacy and institutional operational security. Publication of payroll data through communications containing discriminatory language amplified reputational damage beyond the technical breach. No student records or educational systems were explicitly mentioned as compromised in available reporting. The schools' association with high-profile families heightened public attention to the breaches. Response actions were limited to law enforcement investigations at the time of reporting, with no disclosed containment measures or forensic findings from the affected institutions. The coordinated targeting of multiple schools within a narrow timeframe suggested a deliberate focus on prestigious educational organizations in the Los Angeles area.