Kokomo Solutions Inc.

Kokomo Solutions Inc., a telehealth vendor serving the Los Angeles Unified School District (LAUSD), suffered a network security breach on December 11, 2024, discovered via a forensic investigation. An unauthorized third party accessed files on its network, though the exact compromised data remains undisclosed. The company delayed notifying potential victims until August 5, 2025—nearly eight months later—raising concerns over compliance with state and federal breach notification laws. While no fraud or identity theft has been reported, the breach exposed vulnerabilities in Kokomo’s systems, prompting enhanced security measures and a one-year free membership to Experian IdentityWorks Credit 3B for affected individuals. The incident underscores risks to student and community privacy, particularly given Kokomo’s role in managing sensitive platforms like the LASAR anonymous reporting app, which handles mental health crises, drug-related tips, and school safety threats. The delay in disclosure and lack of transparency exacerbate reputational and legal risks for the vendor.

Source: https://www.govtech.com/education/k-12/telehealth-vendor-for-schools-reports-data-breach

TPRM report: https://www.rankiteo.com/company/kokomo-solutions

"id": "kok2602726090825",
"linkid": "kokomo-solutions",
"type": "Breach",
"date": "12/2024",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'customers_affected': 'Los Angeles Unified School '
                                              'District (LAUSD) students and '
                                              'users of LASAR app',
                        'industry': 'Telehealth/EdTech',
                        'location': 'San Francisco, California, USA',
                        'name': 'Kokomo Solutions Inc.',
                        'type': 'Vendor'},
                       {'customers_affected': 'Students and community members '
                                              'using telehealth/LASAR services',
                        'industry': 'Education (K-12)',
                        'location': 'Los Angeles, California, USA',
                        'name': 'Los Angeles Unified School District (LAUSD)',
                        'type': 'Educational Institution'}],
 'customer_advisories': ['Encouraged to use Experian IdentityWorks Credit 3B'],
 'data_breach': {'data_exfiltration': True},
 'date_detected': '2024-12-11',
 'date_publicly_disclosed': '2025-08-05',
 'description': 'A San Francisco-based law firm, Schubert Jonckheer & Kolbe '
                'LLP, is investigating telehealth vendor Kokomo Solutions Inc. '
                'over a network security breach that occurred on December 11, '
                '2024. The breach affected Los Angeles Unified School District '
                '(LAUSD) students using Kokomo’s telehealth services, '
                'including the Los Angeles Schools Anonymous Reporting (LASAR) '
                'app. Kokomo delayed notifying victims until August 5, '
                '2025—nearly eight months later—and has not disclosed what '
                'specific data was accessed. While no fraud or identity theft '
                'has been reported, the delay may violate state and federal '
                'notification laws. Kokomo has since enhanced its security '
                'measures and offered victims a one-year membership to '
                'Experian IdentityWorks Credit 3B for identity protection.',
 'impact': {'brand_reputation_impact': 'Potential damage due to delayed '
                                       'disclosure and lack of transparency',
            'data_compromised': True,
            'identity_theft_risk': 'Low (no reported cases, but identity '
                                   'protection offered)',
            'legal_liabilities': ['Potential violations of state/federal '
                                  'notification laws'],
            'systems_affected': ["Kokomo Solutions' network",
                                 'Potentially LASAR app data']},
 'investigation_status': 'Ongoing (law firm investigation)',
 'post_incident_analysis': {'corrective_actions': ['Enhanced software security '
                                                   'measures']},
 'references': [{'source': 'Schubert Jonckheer & Kolbe LLP News Release'},
                {'source': 'Kokomo Solutions Victim Notice (August 5, 2025)'},
                {'source': 'California IT in Education (CITE) Conference '
                           '(November 2023) - Lt. Nina Buranasombati (LASPD)'}],
 'regulatory_compliance': {'legal_actions': ['Investigation by Schubert '
                                             'Jonckheer & Kolbe LLP'],
                           'regulations_violated': ['Potential violations of '
                                                    'state/federal data breach '
                                                    'notification laws (e.g., '
                                                    'California Consumer '
                                                    'Privacy Act, FERPA)']},
 'response': {'communication_strategy': ['Delayed victim notification (August '
                                         '5, 2025)'],
              'enhanced_monitoring': True,
              'incident_response_plan_activated': True,
              'recovery_measures': ['Offered 1-year Experian IdentityWorks '
                                    'Credit 3B membership to victims'],
              'remediation_measures': ['Enhanced technical security measures '
                                       'in software'],
              'third_party_assistance': ['Forensic security firm (unnamed)']},
 'threat_actor': 'Unauthorized third party',
 'title': 'Kokomo Solutions Inc. Network Security Breach (December 2024)',
 'type': ['Data Breach', 'Unauthorized Network Access']}