Call +1 (979) 282-5845
Back to news
Cybersecurity Alert
June 2, 2026 by EmailMeNow IT Consulting

Texas ISD Ransomware Tracker 2026: School Districts Hit

Texas school districts remain prime targets for ransomware and phishing. We track 2026 incidents affecting ISDs and explain the state's cybersecurity requirements for public entities.

Local GovernmentSchool DistrictISDRansomwareTexasPhishing
Illustration tracking ransomware attacks on Texas school districts and ISDs in 2026

Texas school districts (ISDs) continue to be prime targets for ransomware and major cyber incidents, disrupting operations and exposing student and staff data. A CBS Texas I-Team investigation found dozens of Texas school districts have been hit by cyberattacks, and a single district ransomware attack reportedly impacted more than 26,000 people.

Texas ISD Cyber Incidents (2026)

DistrictIncidentSource
Uvalde CISDRansomware forced a district-wide shutdown of phones, cameras, AC controls, and other core systemsThe Record
Lancaster ISDRansomware attack; attackers leaked the personal data of ~500 teachers to the dark webWFAA
Houston ISD, Katy ISD, Lamar Consolidated ISDStudent/staff data exposed via the Canvas learning-platform breach claimed by ShinyHunters (third-party vendor)Click2Houston

Also Reported to the Texas OAG (Breach Notices)

Beyond the incidents above, these Texas school districts filed data breach notices with the Texas Attorney General:

DistrictTexans AffectedDate Published
Alvin ISD48,87706/30/2025
Lovejoy ISD16,55306/10/2025
Eanes ISD9,50604/27/2026
Spring ISD5,69005/20/2026
Kerrville ISD4,30008/26/2025
Clarksville ISD2,98002/25/2026
Wharton ISD1,27912/12/2025
Sonora ISD85303/03/2026
Cleburne ISD68407/15/2025

What Texas Law Requires

Texas mandates cybersecurity controls for public entities: districts must designate a cybersecurity coordinator (SB 820) and employees must complete certified cybersecurity training (HB 3834), aligned with the Texas DIR framework.

Check any district’s email posture at audit.emailmenow.com/?industry=local-government.

Recommendations for Districts

  • Enforce DMARC, strict SPF, and DKIM; add MTA-STS and security headers.
  • Adopt and document cybersecurity policies aligned with Texas DIR.
  • Deliver HB 3834 training and designate a coordinator.

Protect your district. Contact EmailMeNow IT Consulting for staff training, policy documentation, and email hardening.

Sources: Texas OAG — Data Security Breach Reports · The Record — Uvalde CISD · WFAA — Lancaster ISD · Click2Houston — Canvas breach · CBS Texas I-Team