Return to Headlines

Important LCPS Community Message

Dear LCPS Family - 

We recently became aware of student violations to the Student Technology Acceptable Use/Responsible Use Policy (Policy 8650). 

In particular, it appears that a small group of students gained unauthorized access to other students’ information by resetting victim students’ passwords on ClassLink and StudentVue. In particular, when a student forgets their ClassLink password, they can reset it after answering certain safeguard or “challenge” questions. The students responsible used social engineering to determine answers to the safeguard questions of other students. They then reset the other students’ passwords and accessed information accessible in ClassLink and StudentVue; however, no student government-issued identification numbers or Individualized Education Programs or 504 Plans (if applicable) were accessible.   

This matter was contained to a small number of LCPS students. If you have not received an individual communication from LCPS regarding this issue, your student’s account was not impacted. 

We strongly condemn this activity as a violation of our Student Technology Acceptable Use/Responsible Use Policy. These actions do not reflect the values at LCPS and will not be tolerated. We take matters that involve our students’ privacy very seriously and the division’s Department of Digital Innovation has taken immediate steps to secure student accounts and to prevent incidents like this from occurring in the future. Now, a student’s password cannot be reset by answering challenge questions; instead, a student must request help directly from a school information technology professional to reset their password.

In addition, this matter is being reviewed by our School Resource Officers in conjunction with the Loudoun County Sheriff’s Office. Students involved in this or any other inappropriate access or hacking attempts face the potential for school disciplinary action, as well as law enforcement action, to include criminal charges. 

Parents are encouraged to have frank conversations with their students about online security and digital civility. In particular, we recommend parents talk with their students about not allowing others access to their accounts, not sharing personal information that could be used to gain access to online accounts, not sharing passwords, and using strong passwords. Students and their families are reminded to abide by Policy 8650, as outlined in the Student Rights and Responsibilities Handbook.

If you have any further questions or concerns regarding this matter, please open a Let’s Talk dialogue for the Department of Digital Innovation, and it will be routed to the appropriate staff member for a response.  

We appreciate your continued support on these matters.      


Aaron Spence, Ed.D.

Published March 8, 2024