Cyber Incident Victim: Okanagan College

On January 9, 2023, Okanagan College’s IT Services team detected a cybersecurity incident during routine surveillance at approximately 6:15 a.m. The attack involved an unrecognized external agent, prompting immediate containment measures. Within 45 minutes, IT Services disabled network access across all campuses to prevent further intrusion and initiated an investigation. The college engaged external cybersecurity experts to assist in assessing the breach and restoring systems. The incident caused widespread network outages, affecting internet connectivity, wireless services, internal student and staff information systems, and internet-based phone lines, including campus security communications. By January 11, partial access to the learning management system Moodle was restored via a dedicated URL, though core network services remained offline. The outage also disrupted the college’s public website and all-user email distribution, complicating internal communications.

Approximately 16,000 students and 1,200 staff were impacted by the prolonged service disruption. As a precaution, the college provided alternative cellular contact numbers for campus security across its Kelowna, Salmon Arm, Penticton, and Vernon campuses. President Neil Fassina issued a public notification on January 11, advising vigilance against potential phishing attempts or fraudulent communications impersonating the institution. The college emphasized it was investigating whether personal data had been compromised but had not confirmed any specific breaches as of January 12. IT Services continued incremental recovery efforts, though system availability remained unchanged by the morning of January 12, according to status updates. Restoration priorities focused on secure reactivation of services while preserving evidence for the ongoing forensic investigation.