The Jefferson County School System said it fell victim to a ransomware computer attack during Spring Break.
The school system said in a news release that its technology team “took immediate steps to stop the attack and has notified state and local authorities.”
According to the US Cybersecurity and Infrastructure Security Agency, ransomware is “a form of malware designed to encrypt files on a device, rendering all files and the systems based on them unusable. Malicious actors then demand ransom in exchange for decryption.”
Attackers sometimes also threaten to release sensitive data if no ransom is paid.
The school system said preliminary investigations found no evidence of a breach of sensitive personal information.
“We will continue to investigate any possibility of compromised data and will notify stakeholders accordingly if discovered,” the press release reads. “We brought in outside cybersecurity experts and law enforcement officials for assistance.”
The district said it uses multiple security protocols, including filters, firewalls and antivirus systems, which enabled it to catch the attack early on.
“As a precaution, we shut down all network systems to examine them thoroughly,” the system said. “These networks will be reconnected as we take steps to ensure all traces of malware are gone.”