Cyber Incident Victim: Shoreline Community College
Date:
Mar 2023
Location:
United States of America
Summary
A ransomware attack disrupted operations at Shoreline Community College, forcing a shift to remote work for most students and staff while keeping the physical campus open. The incident caused the college’s website to go offline and disabled campus Wi-Fi, though in-person classes and exams proceeded where feasible. The Parent Child Center remained operational during the response. Local and federal authorities launched an investigation into the attack, which significantly impacted digital services but maintained partial campus functionality.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On March 20, 2023, Shoreline Community College confirmed a ransomware attack disrupting campus operations and forcing most students and staff to transition to remote work indefinitely. The attack crippled the institution’s online infrastructure, rendering its official website inoperative and disabling Wi-Fi access across campus facilities. Despite these disruptions, physical campus grounds remained accessible to students and employees, with limited exceptions for specific services. Local law enforcement and federal agencies immediately launched investigations into the incident, though no attribution or specific threat actor details were disclosed publicly. The college did not confirm whether data exfiltration occurred or specify ransom demands, focusing instead on operational continuity measures. Administrative functions faced significant constraints due to the loss of network-dependent systems, requiring manual workarounds for critical tasks. No estimated recovery timeline was provided at the initial disclosure stage, leaving the community awaiting updates on service restoration.
The Parent Child Center, a campus facility supporting families with childcare services, remained operational despite the widespread technical outages. Academic leaders directed faculty to conduct in-person classes and examinations wherever feasible, prioritizing minimal disruption to scheduled coursework. Students unable to access digital resources due to the Wi-Fi outage relied on alternative arrangements communicated via email and physical notices. College officials did not disclose the attack vector, initial intrusion timeframe, or specific compromised systems beyond confirming the ransomware’s impact on web services and network connectivity. The investigation remained active with collaboration between cybersecurity experts and government authorities, though no arrests or public attributions emerged in the immediate aftermath. Campus operations continued under modified protocols until systems could be fully restored and validated. The incident underscored persistent vulnerabilities in educational infrastructure while highlighting institutional adaptability during prolonged cyber disruptions.