Cyber Incident Victim: Berkeley County Schools
Date:
Feb 2023
Location:
United States of America
Summary
Berkeley County Schools experienced a cybersecurity incident causing a network outage that disrupted district-wide IT operations, including phone services, internet access, and real-time applications like student bus tracking. The district initiated an investigation with cybersecurity professionals and law enforcement to determine the cause, scope, and potential compromise of sensitive personal data such as student emergency information, though no evidence implicated student Chromebooks. While systems remained offline pending the investigation, staff worked remotely, classes were temporarily canceled affecting over 19,000 students, and interim academic reports remained accessible via an external platform. The district committed to notifying affected individuals and providing protective resources if unauthorized data access was confirmed.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On February 3, 2023, Berkeley County Schools (BCS) in West Virginia experienced a cybersecurity incident that disrupted district-wide network operations, causing a significant outage affecting phones, internet access, and critical IT systems. The district’s team responded by immediately notifying law enforcement agencies and initiating an investigation with cybersecurity professionals to determine the cause and scope of the incident. This outage rendered applications like the real-time bus tracking system unreliable, complicating logistics for parents and staff. By February 6, the disruption led to the cancellation of classes for over 19,000 students, though staff reported for work duties. James Rumsey Technical Institute, serving multiple Eastern Panhandle counties, remained open but accommodated Berkeley County students with flexible attendance policies due to transportation limitations. Superintendent Ron Stephens issued public statements confirming the incident’s impact on computer resources while emphasizing the district’s commitment to restoring services and safeguarding data integrity.
The investigation remained ongoing as of February 6, with BCS prioritizing the assessment of whether unauthorized access to sensitive student or staff data occurred. Initial updates confirmed no evidence of compromise on student Chromebooks used off the BCS network, allowing limited continuity of learning activities through external platforms like Schoology for interim grade reports. District communications acknowledged parental concerns regarding potential exposure of sensitive information, including emergency contact details and child protective orders uploaded to school systems. BCS committed to notifying affected individuals and providing identity protection resources if breaches of personal data were confirmed, adhering to legal requirements. Restoration timelines for full network operations remained undetermined pending the investigation’s completion, with systems kept offline as a precaution. The district maintained transparency through regular updates while focusing on restoring educational services amid the outage’s logistical challenges.