Las Cruces Public Schools Shut Down Servers After Ransomware Attack

All servers remain shut down and the district crisis response team and central office are communicating with schools through phone and handheld radio.

Las Cruces Public Schools Shut Down Servers After Ransomware Attack

A ransomware attack prompted the shutdown of all computers and internet servers across a New Mexico school district.

The IT department for Las Cruces Public Schools discovered early Tuesday morning that some servers were compromised and quickly shut down the district’s entire computer network in order to contain the virus, according to Bleeping Computer.

Hackers requested an unspecific amount of bitcoin, which the district will not pay or negotiate, said Samantha Lewis, public relations coordinator for the district. The district is working with local law enforcement to investigate the attack.

“At this time, we do not believe staff or student data has been breached or compromised,” according to the news release from the district. “We have activated the district crisis response team and central office is maintaining communication with schools and district sites via phone and handheld radios.”

All schools remain open but the servers are still shut down through at least Friday as the IT department works to restore critical services, The Albuquerque Journal reports.

“We are treating this like a virus. With that said, we are asking principals, teachers, students that have any district devices as far as laptops, kindles, iPads, just to shut them down completely,” stated Lewis.

Nearby New Mexico State University (NMSU) is also taking precautions, including blocking network access to LCPS, quarantining email from LCPS, blocking access to their network from NMSU and blocking incoming IP addresses from LCPS, according to an email from the NMSU IT department

LCPS can now be added to the growing list of schools and school districts affected by ransomware this year.

A report released Sept. 26 by cybersecurity firm Armor found in the previous two weeks alone, 15 school districts comprised of over 100 K-12 schools were hit by ransomware. In the first nine months of 2019, more than 500 schools were attacked by ransomware.

The full list of affected schools and school districts can be found here.

If you enjoyed this article and want to receive more valuable industry content like this, click here to sign up for our FREE digital newsletters!

About the Author


Amy is Campus Safety’s Executive Editor. Prior to joining the editorial team in 2017, she worked in both events and digital marketing.

Amy has many close relatives and friends who are teachers, motivating her to learn and share as much as she can about campus security. She has a minor in education and has worked with children in several capacities, further deepening her passion for keeping students safe.

Leading in Turbulent Times: Effective Campus Public Safety Leadership for the 21st Century

This new webcast will discuss how campus public safety leaders can effectively incorporate Clery Act, Title IX, customer service, “helicopter” parents, emergency notification, town-gown relationships, brand management, Greek Life, student recruitment, faculty, and more into their roles and develop the necessary skills to successfully lead their departments. Register today to attend this free webcast!

One response to “Las Cruces Public Schools Shut Down Servers After Ransomware Attack”

  1. […] La Cruces Public Schools in New Mexico and Monroe-Woodbury Central Schools in New York are just two of the latest educational institutions to fall prey to ransomware attacks. With large amounts of personal data on file, schools are a prime target for bad actors – similar to other “big game” targets that include government agencies and healthcare systems. […]

Leave a Reply

Your email address will not be published. Required fields are marked *

Get Our Newsletters
Campus Safety HQ