Cyber Incident Victim: Broken Arrow Public Schools

On or around August 1, 2019, Broken Arrow Public Schools experienced a ransomware attack that compromised its network and servers. The district confirmed the incident publicly, disclosing that unauthorized actors had deployed ransomware to encrypt systems. Following the attack, Broken Arrow Public Schools engaged cybersecurity experts to assess the damage and restore operations. The district also notified the Federal Bureau of Investigation (FBI) to initiate a formal law enforcement inquiry into the incident. No specific details about the ransomware variant, initial attack vector, or encryption scope were disclosed in public statements. The district did not confirm whether student or employee data was exfiltrated during the breach, nor did it specify the duration of system unavailability caused by the attack.

Response efforts focused on containment and recovery, with cybersecurity professionals working to mitigate the ransomware's effects and restore critical systems. The FBI's involvement included supporting the investigation to identify the threat actors responsible for the attack. Broken Arrow Public Schools did not publicly disclose whether a ransom demand was received, paid, or negotiated. The incident prompted an ongoing investigation to determine the origin of the attack and the identity of the perpetrators. No further operational impacts or recovery timelines were detailed in the initial public reports following the disclosure.