Corpus Christi ISD experienced a ransomware attack in January 2025 affecting student, staff, and parent records for approximately 60,000 individuals. Enrollment and payroll systems were disrupted for several weeks.
Legacy student information system with unpatched vulnerability exploited via internet-facing access. Ransomware propagated to payroll and administrative systems on the same network segment.
Sentinel ($89/ep/mo) — 24/7 SOC + SIEM. Fortress ($109/ep/mo) — Sentinel + EDR management + vulnerability management. Command ($129/ep/mo) — Fortress + vCISO + compliance mapping + IR plan. See full tier comparison →
| Regime | Standard / Citation | Gap Identified |
|---|---|---|
| FERPA | 34 CFR Part 99 | Student education records disclosed — FERPA breach notification and remediation obligations triggered |
| TDPA | Tex. B&C Code §521.053 | 60,000 Corpus Christi ISD community members required notification |
CoreRecon cites verifiable public sources only. No speculation on unverified attribution is published. Threat actor attribution appears only where publicly confirmed by law enforcement or the organization.
Free $2,500 security posture assessment for Texas organizations. We map your gaps against the same attack vectors used in this incident. No contract, no commitment.