Cyber Incident Victim: Swansea Public Schools

On January 3, 2023, Swansea Public Schools Superintendent John Robidoux announced via Twitter the cancellation of classes for January 4 across all six district schools following a ransomware attack that forced a complete network shutdown. The attack disrupted core operational systems, including copiers, telephones, and Chromebooks, significantly impairing communication and daily functions. Transportation services were maintained for out-of-district special education students despite the closures. The district's contracted cybersecurity firm immediately began assessing the attack's scope while district IT personnel collaborated on containment efforts. Initial investigations suggested the ransomware entered the network through an encrypted download executed unintentionally by a district insider, with no evidence of malicious intent. Affected institutions included Joseph Case High School, Joseph Case Junior High School, E.S. Brown School, Gardner Elementary School, Mark G. Hoyle Elementary School, and Joseph G. Luther Elementary School.

By January 5, the cybersecurity firm and IT department successfully removed all identified viruses, worms, and ransomware from the network while implementing additional security measures, enabling classes to resume. Superintendent Robidoux credited pre-existing network security protocols with preventing more extensive damage. The incident marked the first publicly reported ransomware attack on a U.S. school district in 2023, occurring amid simultaneous attacks on nearby Bristol Community College. No evidence emerged that personal data was exfiltrated during the breach. The district communicated ongoing updates to parents through direct notifications and news outlets, emphasizing the attack's broad operational impacts beyond instructional technology. Network restoration prioritized core educational functions, though full recovery timelines remained unspecified in initial reports.