Cyber Incident Victim: Upper Grand District School Board

On or shortly before January 6, 2021, the Upper Grand District School Board (UGDSB) experienced a cybersecurity incident affecting student email accounts. The breach involved unauthorized access to the board's student Gmail system, resulting in the transmission of "inappropriate" emails to thousands of students across the district. School board administrators detected anomalous email activity and subsequently suspended all student access to Gmail accounts as a containment measure. This disruption occurred during the 2020-2021 academic year, though the exact date of initial compromise remains unspecified in public reporting. The incident prompted immediate operational changes to isolate affected systems and prevent further unauthorized communications.

By January 6, 2021, UGDSB had restored email access following security remediation efforts, though specific technical details of the breach resolution were not disclosed. The incident caused at least two significant impacts: direct disruption to student communications through temporary loss of email services, and exposure of students to unsolicited inappropriate content via the compromised accounts. No evidence suggests broader data exfiltration beyond the email system misuse. The school board implemented access suspension as its primary containment strategy, with restoration occurring within approximately one week of initial detection. Public notification occurred through media channels rather than direct breach disclosures, with operational recovery confirmed by the restoration date.