LAUSD Computer Hack
Another Shoe Drops In LAUSD Hacker Scandal
The District sends out a new round of letters informing parents and teachers that personal information has been compromised.
“We take your child’s privacy and the security of your child’s data seriously, and deeply regret that this incident occurred.”
As LAUSD parents attempt to recover from three days of disruptions due to Superintendent Carvalho’s botched handling of labor negotiations, a new surprise showed up in some mailboxes. Despite past assurances that the District had intercepted a “one-time” attack on its computer systems during the 2022 Labor Day weekend and prevented any access to sensitive information, parents and teachers are reporting that they are now receiving “Notice of Data Breach” letters. It is not clear if the recipients are among the “approximately 2,000” current and former students the District was forced to acknowledge after an investigation by “The 74” or if this is an entirely new group of victims.
The letter that I reviewed was dated March 22, 2023, which is 200 days after the District shut down its system in an attempt to secure the data that it contained and 234 days after Russian hackers first compromised the system. The parent who received the letter was warned that “one or more files that included your child’s name and medical information” was identified in a “review of the files involved”. It did not say if the child’s information was actually found on the Dark Web or if it was simply in a file that was known to be compromised.
While the letter included information about steps the parent could take to protect their child’s credit, including requesting copies of their credit reports and placing Fraud Alerts and Credit Freezes on their accounts, it did not specify any actions that the LAUSD was taking to protect the student. Most notably, there were no offers of free credit monitoring as is usually standard practice when there is a breach of computer systems.
The letter also ignored the fact that it was the child’s medical information that was exposed. This…