The University of Oklahoma (OU), home to more than 34,000 students, has announced steps to address “unusual activity” discovered on its IT network. The university’s investigation follows a ransomware gang’s claim of stealing 91 MB of data, including employee records, financial information, and other sensitive materials.
Swift Isolation Measures
In a statement, an OU spokesperson confirmed the discovery of the suspicious activity and outlined immediate actions taken:
“Upon discovery, we isolated certain systems and are investigating the matter. As part of this ongoing process, measures are being implemented across our network.”
Details about the cause of the breach, specific systems affected, or whether the university will consider paying a ransom remain undisclosed.
Timing and Vulnerabilities
The cyber incident coincided with OU’s first official day of the new semester. Just a week prior, the university closed its campus and canceled in-person courses due to a snowstorm, forcing many employees to work remotely. This shift to remote access may have inadvertently created opportunities for cybercriminals to exploit vulnerabilities.
Experts suggest the ransomware gang behind this attack, known as Fog, likely leveraged compromised VPN credentials—a common method in recent higher education cyberattacks.
Fog’s Reign of Attacks on Education
Fog, an emerging ransomware group that surfaced in May 2024, has focused its efforts on U.S.-based organizations, with 80% of its victims in the education sector. According to cybersecurity researchers at Arctic Wolf, Fog often targets large universities by exploiting remote access through compromised VPN gateways from multiple vendors.
“In each of the cases investigated, forensic evidence indicated that threat actors were able to access victim environments by leveraging compromised VPN credentials,” Arctic Wolf noted.
A Growing Trend of Ransomware in Academia
The University of Oklahoma incident is the latest in a troubling trend of ransomware attacks targeting higher education institutions.
- Stanford University and the University of Michigan both suffered network disruptions from ransomware attacks.
- East Central University in Ada, Oklahoma, faced a ransomware attack last year, leading to a student data breach that included Social Security numbers.
These attacks frequently occur during holidays or semester breaks, when IT staff are often unavailable or operating with reduced capacity.
The Road Ahead
As the University of Oklahoma works to secure its network and prevent further damage, the incident serves as yet another reminder of the vulnerabilities inherent in higher education IT systems. With ransomware groups becoming increasingly sophisticated and targeting specific industries, universities must prioritize proactive measures like robust VPN protections, constant monitoring, and rapid incident response plans.
Support truth, health, and preparedness by shopping the Alex Jones Store through our link. Every purchase helps sustain independent voices and earns us a 10% share to fuel our mission. Shop now and make a difference!
https://thealexjonesstore.com?sca_ref=7730615.EU54Mw6oyLATer7a
Sponsored • TRJ Ads
Inquiries: contact@therealistjuggernaut.com
