On Saturday, January 18, the Harrison County Board of Education experienced a cybersecurity incident involving unauthorized access to some of its computer systems. The school board, upon discovering the cyberattack on Harrison County Schools, immediately initiated an investigation and temporarily disabled the affected network over the holiday weekend to prevent further damage.
School authorities have confirmed that they have engaged external cybersecurity experts to assist in assessing the full scope of the situation. Their involvement is aimed at ensuring the security of the systems and mitigating any potential future risks.
Harrison County Schools Cyberattack Details
While the authorities have refrained from disclosing specific details regarding the systems that may have been compromised, they have promised to provide further updates as more information becomes available.
“We recognize that you may have questions and concerns, and we want to assure you that we are committed to keeping you informed,” the school board said in a public statement. “As we learn more, we will provide timely updates to ensure you are aware of any developments. Your understanding during this time is greatly appreciated.”
Other Recent Cybersecurity Incidents in Education
The cybersecurity incident at the Harrison County Schools is reminiscent of other recent attacks on educational institutions. In September 2024, Highline Public Schools, located just south of Seattle, reopened after a cyberattack forced the district to close its schools. The district, serving 17,500 students, had to halt all school activities, including athletics, before classes resumed. Although the specifics of the Highline Public Schools cyberattack remain unclear, authorities confirmed the closure had a broad impact on the district’s operations.
Similarly, in August 2024, the Alabama State Department of Education (ALSDE) narrowly avoided a ransomware attack after hackers breached sensitive data in June. Although ALSDE officials prevented a complete system lockdown, they acknowledged that some data had been accessed before the breach was halted. The department is currently collaborating with federal law enforcement to investigate the extent of the data compromise and determine what information was exposed.
In response to the growing threats facing educational institutions, the Cybersecurity and Infrastructure Security Agency (CISA) established the School Safety Task Force (SSTF) in January 2025. The SSTF focuses on addressing the specific cybersecurity challenges that K-12 schools and districts face, developing actionable resources, and fostering collaboration to create safe learning environments.
One of the key initiatives of the SSTF is the Federal School Safety Clearinghouse, which provides a comprehensive hub for resources, tools, and best practices related to school safety. This platform, accessible through SchoolSafety.gov, offers guidance on creating safety plans, securing funding, and addressing cybersecurity concerns within educational institutions.
Key Initiatives and Tools from the School Safety Task Force
To further enhance school security, the SSTF has developed specialized tools to help K-12 schools tackle specific issues. These tools include the K-12 Bystander Reporting Toolkit, which encourages students and school communities to report suspicious activities or threats, and the K-12 Anonymized Threat Response Guidance, which assists schools and law enforcement in crafting strategies for responding to anonymous threats.
The development of these resources reflects the growing recognition of the need for proactive measures to address cyber threats and improve overall school safety. These tools aim to empower educational institutions to prevent and mitigate cybersecurity risks, fostering a culture of security that prioritizes the safety of students, staff, and sensitive data.
As Harrison County Schools continues its investigation into the recent cyber incident, the ongoing efforts from federal agencies and cybersecurity experts will be crucial in helping educational institutions address the complex and evolving landscape of cybersecurity threats.
