Cyber Incident Victim: San Diego Unified School District

On or around December 1, 2022, San Diego Unified School District (SDUSD) experienced a cybersecurity incident affecting its computer network. District Superintendent Lamont Jackson formally disclosed the breach in a letter to staff and student families dated December 2, 2022, characterizing it as a "cybersecurity incident" without specifying the exact nature of the compromise. Upon discovering the incident, district administrators immediately initiated containment protocols to secure their network infrastructure and prevent operational disruptions to information technology systems. The district concurrently launched an internal investigation into the breach while engaging external cybersecurity professionals for forensic support and technical assistance. Law enforcement agencies were notified of the incident in compliance with standard protocols, though no details regarding specific agencies or investigative collaborations were provided.

SDUSD confirmed that all critical operational systems remained functional throughout the incident, with no reported disruptions to school safety protocols or emergency response mechanisms. While the district did not disclose whether sensitive data was compromised or if ransomware demands were involved, precautionary credential resets were implemented systemwide. All staff account passwords were forcibly changed immediately following the detection of the breach. Student account password changes were scheduled for phased implementation under district supervision, with school personnel designated to distribute new credentials according to a predetermined timeline. Superintendent Jackson emphasized the district's commitment to data security and integrity in his communications, noting that investigative efforts remained ongoing to determine the full scope and origin of the breach. No system downtime or instructional impacts were reported as a direct consequence of the incident.