Cyber Incident Victim: Albuquerque Public Schools
Date:
Jan 2022
Location:
United States of America
Summary
A cyberattack forced Albuquerque Public Schools, New Mexico's largest district serving over 73,000 students, to cancel classes for multiple days—marking its first-ever "cyber snow days" due to compromised systems critical for student safety and operations. The incident disrupted attendance tracking, emergency communications, and authorized student pickups, prompting closures while experts worked to assess exposure, restore systems, and enhance security protocols. The FBI indicated no connection to a prior attack on the local county government. This reflects a broader trend of escalating cyber threats against educational institutions, which face heightened vulnerabilities from virtual learning infrastructure and limited cybersecurity resources compared to private sectors. Such attacks often lead to prolonged operational and financial recovery challenges beyond immediate closures.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 3 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On January 12, 2022, Albuquerque Public Schools (APS), New Mexico’s largest school district serving over 73,000 students across 144 schools, experienced a cyberattack that compromised critical operational systems. The attack forced APS to cancel classes on January 13—the first district-wide closure attributed to a cybersecurity incident—with administrators describing it as a “cyber snow day” that would require makeup days at the end of the academic year. The breach primarily affected the student information system, disrupting core functions including attendance tracking, emergency communication with families, and verification of authorized adults for student pickups. District Superintendent Scott Elder emphasized that the compromise of these safety-critical systems necessitated the closure, as the inability to reliably manage student supervision and emergency protocols posed immediate risks. APS engaged cybersecurity experts and law enforcement agencies to investigate the incident, though details about the attack vector, scope of data exposure, and threat actor remained undisclosed to preserve investigative integrity. The district focused on identifying vulnerabilities, implementing system fixes, reinforcing security protocols, and enhancing monitoring to prevent future incidents. Superintendent Elder explicitly refuted social media speculation that the closure was a pretext to address COVID-19 surges, clarifying that the district faced simultaneous crises.
The incident reflected a broader trend of escalating cyberattacks targeting U.S. educational institutions, with incidents increasing nearly fivefold since 2016 according to district statements. APS noted that schools’ reliance on virtual learning platforms expanded attack surfaces, while limited cybersecurity resources compared to private-sector organizations made them attractive targets for sophisticated actors, often operating internationally via dark web channels. The FBI confirmed no connection to a prior ransomware attack on Bernalillo County government systems, which had similarly disrupted local operations. Historical precedents cited included 2020 attacks delaying school openings in Hartford, Connecticut, and shuttering online classes in Baltimore County Public Schools around Thanksgiving, the latter incurring over $8.1 million in recovery costs with impacts lingering a year post-incident. While APS avoided disclosing financial estimates, the district acknowledged potential long-term costs related to data protection, system restoration, and loss of institutional knowledge such as irreplaceable teacher materials. As New Mexico’s largest employer with 12,000 staff, including 5,500 teachers, the outage also underscored operational dependencies on digital infrastructure beyond classroom instruction, highlighting systemic vulnerabilities in public education networks nationwide.