Cyber Incident Victim: Tshwane University of Technology

On January 1, 2024, the Tshwane University of Technology (TUT) publicly disclosed a cybersecurity incident that disrupted normal system operations. The incident directly impacted the university’s authentication systems, temporarily preventing all users from accessing accounts with their TUT login credentials. In response to the breach, TUT’s administration initiated an immediate credential reset as a precautionary containment measure, invalidating all existing passwords to sever potential unauthorized access pathways. While the investigation into the incident’s origin and methodology remained ongoing at the time of the announcement, the university confirmed no evidence of data exfiltration or loss had been identified. The disruption caused service interruptions across systems reliant on TUT credentials, though the institution did not specify the exact scope of affected infrastructure beyond login functionality.

TUT directed all credential holders to proactively reset their passwords using strong, unique combinations not reused across other platforms and to enable multi-factor authentication (MFA) to augment account security. The university acknowledged the operational inconvenience caused by both the incident and the mandated credential resets, apologizing for disruptions while emphasizing efforts to restore services securely. Ongoing updates were promised as the investigation progressed, with restoration work prioritized to minimize prolonged downtime. Users were instructed to contact the TUT ICT ServiceDesk via provided phone numbers for incident-related assistance or clarification. No additional technical details regarding attack vectors, threat actor attribution, or forensic findings were disclosed in the initial notification.