We want to provide you with an update on the cyber incident and timeline for getting our schools back online.
Investigation Update
On September 7, Highline identified evidence of unauthorized activity on its network. In response, a third-party cybersecurity forensic specialist was engaged, and an investigation was launched, which confirmed that the unauthorized activity was a form of ransomware.
We notified the FBI of this activity, and we are working to support their investigation. Due to the nature of the investigation, we cannot comment on any potential law enforcement investigation at this time.
The investigation to determine what personal information was involved remains ongoing.
We are preemptively providing all Highline employees with free credit monitoring for one year. We have chosen to provide staff with this service as a precaution and accommodation.
If this investigation determines that personal data was exposed because of this incident, we will notify individuals in writing, following applicable law.
Getting Back Online
As we work to rebuild our network systems and come back online, there are two important steps that need to happen first. Do not use your district-provided device until you have been prompted to by technology staff.
1. Districtwide Password Updates
Technology staff will prompt all staff and students to update their network passwords beginning the week of October 14.
All passwords should be at least 12 characters in length and must contain at least one uppercase, lowercase, special case and number character. Passwords cannot contain up to three consecutive letters of your name or username. Considerations for strong passwords also include:
- Avoid using personal details like your children’s names or birthdays.
- Avoid using a password you use with other accounts.
- Consider using a passphrase, which is a series of two or three random words that are not related. This makes a memorable and more secure password. Example: P0pc0rn F!ow3r Such
- Don't use common words like "Highline" or "password."
2. Windows Device Re-Imaging
We will also re-image all district-provided Windows devices. A team of technicians will visit school sites to collect devices, reimage and re-distribute devices. This process will begin the week of October 14. More details on school and department timelines will be shared next week.
Chromebooks and Apple devices will not need to be re-imaged. However, staff and students should not use these devices until they have been prompted to re-set their passwords by technology staff.
Tool Prioritization
Once devices are re-imaged and passwords are re-set, we will also have access to several of our network tools and the internet. We are prioritizing access to tools that are authenticated through ClassLink. The tools that will be available starting the week of October 14 include:
- Canvas
- Department of Health
- Employee Online
- Google Drive and Classroom (Students & Staff)
- Go Guardian
- Frontline
- Health Office Anywhere
- IEPOnline
- IncidentIQ
- I-Ready
- Microsoft SDS
- PeachJar
- ReadyOp
- Synergy
We will keep you informed about other tools as they become available.
Thank You
We appreciate the quick action of our technology team in helping us recover from this incident. We are also grateful for your patience while we continue to conduct a thorough investigation.
Please continue to monitor the FAQ webpage for more updates. We have updated this page to reflect this update and have included timestamps for each FAQ.