No data breached in Uvalde CISD attack, according to district

UVALDE, Texas — Students are back in class after the Uvalde CISD suffered a ransomware attack that shut down critical systems and forced classes to be canceled earlier this month.

Related: No data breached in Uvalde CISD cyber attack, district says classes to resume Sept. 22

In a community update, district officials said investigators have identified and resolved the point of access used by attackers. They also said that the incident was not caused by staff error, and no ransom was paid. Instead, the district was able to restore its systems using backups.

“To date, there’s no evidence of unauthorized access to sensitive or personal data,” the district said in a statement. “The ongoing forensic investigation has confirmed that no data breach has occurred, which is reassuring news for our community.”

District leaders acknowledged that some systems remain affected. While heating and cooling systems and building access controls were back online by the time classes resumed, phone lines remain down. Officials said staff are relying on personal cellphones if necessary, and families should be aware that calls from schools may appear as “No Caller ID.”

The attack, which took place Sept. 13, disrupted critical district infrastructure, including internet, phones, and HVAC systems. Families and staff expressed frustration in the days following, raising concerns about cybersecurity safeguards and transparency from district leaders.