Cyber Incident Victim: Kenosha Unified School District

On September 25, 2022, the Kenosha Unified School District in Wisconsin experienced a cyberattack that disrupted operations for a district serving nearly 20,000 students. The Snatch ransomware group publicly claimed responsibility for the attack on October 23, listing the district on its victim portal. While the group did not disclose the volume or nature of data exfiltrated, the district acknowledged the incident in a public notice issued on September 29. District officials engaged law enforcement and retained a cybersecurity firm to investigate the breach. Systems were subsequently restored to operational status, with the district committing to a post-incident review to assess potential data compromise. The attack occurred amid a surge in ransomware incidents targeting U.S. educational institutions throughout 2022, prompting heightened federal attention to K-12 cybersecurity vulnerabilities.

The incident aligned with broader federal concerns regarding cyber threats to educational infrastructure. A U.S. Government Accountability Office report released shortly after the attack revealed that school disruptions from similar incidents ranged from three days to three weeks, with full recovery taking two to nine months. The GAO urged the Department of Education and Cybersecurity and Infrastructure Security Agency (CISA) to enhance coordination on K-12 cybersecurity through standardized metrics for security products and improved interagency collaboration. CISA Director Jen Easterly had previously identified K-12 schools as a priority sector for federal defensive efforts within critical infrastructure. The Kenosha attack exemplified the operational and data risks facing school districts, though the district did not publicly confirm whether ransomware deployment caused system outages or if data was exfiltrated beyond the attackers' claims. District officials focused restoration efforts on maintaining educational continuity while investigating potential data exposure.