Cyber Incident Victim: Kellogg Community College

On April 29, 2022, Kellogg Community College in Battle Creek, Michigan, experienced a ransomware attack that disrupted operations across its main campus and branch locations in Coldwater, Albion, and Hastings. The college publicly confirmed the incident on May 2 after systems became crippled, forcing a complete shutdown of all campuses and canceling classes for two days. Approximately 7,000 students were affected during a critical academic period as they prepared for final exams and coursework submissions due May 1, with the semester scheduled to conclude on May 9. College administrators engaged third-party incident response experts to investigate the breach and restore systems, while acknowledging the investigation remained in early stages with no confirmed details about data compromise or the responsible threat actor. Staff returned to campuses on May 3, followed by students resuming classes on May 4 after partial recovery efforts.

The college implemented immediate security measures including mandatory password resets for all students, faculty, and staff accounts, along with deployment of multi-factor authentication for network access. Officials emphasized their commitment to enabling students to complete coursework despite disruptions but provided no specifics about academic accommodations. No ransomware group claimed responsibility, and the institution did not disclose whether data exfiltration occurred, though the article noted 10 of 13 similar U.S. higher education ransomware attacks in 2022 involved stolen data. The incident marked the 13th reported ransomware attack against a U.S. college or university that year, occurring days after Austin Peay State University's ransomware disclosure and alongside attacks on nine U.S. school districts. Kellogg Community College's technology team continued working with external experts to assess potential impacts to personal data while reinforcing network defenses against further unauthorized access.