Cyber Incident Victim: Xavier University of Louisiana
Date:
Nov 2022
Location:
United States of America
Summary
Xavier University of Louisiana experienced a network disruption identified as an encryption event, prompting an investigation with cybersecurity experts. Malicious actors claimed to have stolen personal information from students and employees during the incident, though the university has not confirmed the extent of data exposure or specified the types of compromised information. Restoration efforts for the network were ongoing, with officials working to identify and notify potentially affected individuals. This incident aligns with broader trends of ransomware and cyberattacks targeting educational institutions, which have increasingly faced threats involving data theft and operational disruptions. The university did not disclose whether a ransom was demanded or paid.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 2 techniques |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On November 22, 2022, Xavier University of Louisiana experienced a network disruption identified as an "encryption event," indicating a cyber attack involving data encryption, commonly associated with ransomware. University President Reynold Verret disclosed via email that malicious actors claimed to have stolen personal information belonging to students and employees during the incident. The university engaged cybersecurity experts to investigate the breach, though the specific intrusion method and initial attack vector were not detailed publicly. While the attackers asserted data theft, university officials did not confirm the validity of these claims beyond acknowledging the hackers’ statements. The scope of compromised data remained undetermined, including the types of personal information involved and the number of affected individuals. Verret stated the institution was working to identify impacted parties and initiate notifications, but no timeline for completion was provided. Network restoration efforts were underway with a focus on security, though the university did not specify when full operational recovery occurred or whether systems were taken offline during remediation. The incident did not include publicly confirmed details regarding ransom demands, payments, or threat actor identification.
The cyber attack aligned with a broader trend of ransomware targeting U.S. educational institutions, as highlighted by a 2021 FBI alert and exemplified by attacks on at least nine colleges in April 2022 and Knox College earlier that November. Xavier’s incident underscored regional vulnerabilities, following New Orleans’ 2019 ransomware attack that cost over $5 million in recovery expenses. While Xavier’s financial losses and operational downtime were not quantified, the potential exposure of personal data posed risks to students and staff, mirroring consequences seen in the Los Angeles Unified School District breach where leaked files contained sensitive information. The university’s response prioritized investigation and secure network recovery, but persistent uncertainties regarding data exfiltration and victim impact left critical questions unresolved. No further public updates clarified whether forensic analysis confirmed data theft or identified the perpetrators.