On February 26, Victor Valley Union High School District was infected with malware. This week, they are first sending out mailed notifications to employees.
A copy of their template, submitted to the California Attorney General’s Office on June explains:
What Happened?
On February 26, 2021, some of the District’s computer systems were infected with malware that encrypted the data on those machines. We quickly identified and contained the malware, began to restore data and launched an investigation with the assistance of a cybersecurity firm.What Information Was Involved?
On March 1, 2021, the investigation determined that some data stored in the District’s network was accessed by the unauthorized party during the malware incident. We promptly reviewed the information that was accessed and determined it includes your name and Social Security number.
The full notification template can be found here. It is not clear why there was a gap of three months between the incident and notification.