Baltimore Schools Ransomware Attack Exposes Data of Thousands

A ransomware attack on Baltimore City Public Schools in February has led to the exposure of sensitive data belonging to thousands of students, teachers, and staff, officials confirmed this week.

 

The breach, which occurred on 13 February, targeted the school system’s IT infrastructure, allowing hackers to access files containing personal information. According to a breach notice published on Tuesday, data from current and former employees, volunteers, and contractors was compromised, along with files linked to approximately 1.5% of the student population—over 1,150 students.

 

The district acknowledged the incident was a ransomware attack but stated that no payment was made to the attackers.

 

Exposed data is believed to include Social Security numbers, driving licence and passport details, and—for affected students—call logs, absenteeism records, and maternity status. School system CEO Sonja Santelises, who was among those impacted, stated that over half of staff members were affected. In total, around 25,000 individuals may have been impacted, including more than 7,000 current teachers.

 

Baltimore City Schools has since taken several remedial steps, including resetting passwords and installing endpoint detection systems. Victims are being offered two years of free credit monitoring.

 

While the attack did not disrupt day-to-day operations, the breach adds to a troubling trend. At least 75 ransomware incidents have been recorded across US schools and colleges in 2025 alone, according to cybersecurity experts.

 

The FBI and cybersecurity firms continue to investigate the incident. Baltimore has faced similar challenges in recent years, with previous ransomware attacks on both its school system and city government.

 

The school district has set up a call centre to support those affected and is urging continued vigilance as investigations continue.