Cyber Incident Victim: Blue Earth Area High School
Date:
Sep 2019
Location:
United States of America
Summary
A cyberattack compromised the environmental control systems at Blue Earth Area High School, specifically targeting the computer regulating humidity levels within the building. This disruption left the gymnasium vulnerable to uncontrolled moisture, resulting in significant damage to the flooring. The incident necessitated a full replacement of the gym floor to address the structural compromise caused by the humidity exposure. School officials confirmed the attack directly impacted critical infrastructure, highlighting the operational and physical consequences of the breach. Mitigation efforts included both addressing the immediate facility damage and responding to the cybersecurity compromise.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On September 19, 2019, Blue Earth Area High School experienced a cybersecurity incident affecting its building management systems. The attack compromised a computer responsible for regulating humidity levels within the school facility, specifically impacting environmental controls for the gymnasium. This disruption left the gym floor vulnerable to uncontrolled humidity fluctuations. By the time of the October 2019 school board meeting, Superintendent Mandy Fletcher publicly confirmed the cyberattack's role in damaging the athletic facility. The incident demonstrated how operational technology compromises could directly enable physical infrastructure damage, with moisture exposure warping or degrading the flooring material beyond repair.
In response to the irreversible damage, the school district initiated plans to replace the entire gymnasium floor. No technical details about the attack vector, threat actor, or network containment procedures were disclosed publicly. The replacement project represented a direct financial and operational consequence of the cyber incident, requiring reallocation of district resources. The incident underscored vulnerabilities in industrial control systems within educational facilities, where environmental management systems lacked sufficient safeguards against cyber intrusions. Physical remediation became necessary despite the digital nature of the initial compromise, highlighting interdependencies between cyber and physical infrastructure in institutional settings.