Association of California School Administrators reports cyberattack, 55k impacted
Learn More
The Association of California School Administrators (ACSA) is reporting a significant data breach impacting nearly 55,000 individuals due to a cyberattack. As the largest umbrella association for school administrators in the United States, ACSA represents over 17,000 California educators, including superintendents, principals, vice-principals, and managers.
The incident was discovered on September 24, 2023, when ACSA found that some files in its environment had been encrypted, indicating a ransomware attack. Further investigation revealed that a threat actor accessed ACSA systems between September 23 and 24, 2023, potentially exfiltrating sensitive information.
The compromised data includes:
- Names
- Addresses
- Dates of birth
- Social Security numbers
- Driver’s license numbers
- Payment card information
- Medical information
- Health insurance information
- Tax IDs
- Student report cards and test scores
- Employer-assigned identification numbers
- Online account credentials
ACSA completed its investigation and identified the affected individuals by early May 2024, at which point notifications began. Approximately 54,600 individuals are impacted by this breach.
ACSA has not found any evidence of actual or attempted identity theft or fraud related to this incident. The organization is offering 12 months of credit monitoring services to those affected.
