The K-12 Cyber Incident Map

Incidents Since January 2016

The K-12 Cyber Incident Map is a visualization of cybersecurity-related incidents reported about U.S. K-12 public schools and districts from 2016 to the present.** ‘Cyber’ incidents include:

  • phishing attacks resulting in the disclosure of personal data (blue pins);
  • other unauthorized disclosures, breaches or hacks resulting in the disclosure of personal data (purple pins);
  • ransomware attacks (yellow pins);
  • denial-of-service attacks (green pins); and
  • other cyber incidents resulting in school disruptions and unauthorized disclosures (red pins).

The K-12 Cyber Incident Map is interactive. In addition to being able to shrink or enlarge the map, clicking on a pin will provide a summary of information about each specific incident, including the year the incident became public, the school/district involved, the incident type, a brief description of the incident, and the source of the data about the incident.


**Map last updated: July 20, 2019

Buy Me a Coffee at

Maintained by EdTech Strategies, LLC as a service to the K-12 community. If you benefit from this work, please consider becoming a supporter today.

Related resources:

Questions? See the FAQ. For news and updates, sign up for our newsletter and follow @K12CyberMap. Have a question or incident to report? Contact me.