Cyber Incident Victim: Walla Walla University
Date:
Dec 2019
Location:
United States of America
Summary
Walla Walla University experienced a disruptive cyberattack during fall finals week, identified as a ransomware incident that compromised campus-wide systems. The attack caused significant operational disruptions, crashing online networks and phone services critical for academic activities. University officials confirmed the incident's discovery on a Monday but did not disclose whether a financial ransom was demanded as part of the intrusion. Investigations were initiated to address the breach and restore affected infrastructure amid the heightened academic period.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Walla Walla University experienced a disruptive cyberattack discovered on December 9, 2019, during its fall finals week. The incident caused campus-wide network outages, crashing online systems and disabling telephone communications. University officials publicly characterized the event as a ransomware attack but did not disclose whether attackers made explicit financial demands. The timing coincided with critical academic operations, as students and faculty relied on digital systems for final exams and course completion. No technical details regarding infection vectors, data encryption methods, or specific compromised systems were released by the institution. Initial reports indicated the attack paralyzed administrative and academic functions dependent on networked resources.
University administrators initiated an investigation immediately upon detecting the breach but did not publicly outline containment procedures or recovery timelines. The incident remained under active scrutiny without subsequent disclosures regarding operational restoration or forensic findings. No evidence emerged suggesting unauthorized access to sensitive personal data or research materials. The cyberattack's primary confirmed impacts centered on operational disruption rather than data exfiltration or destruction. Institutional communications emphasized incident response efforts without elaborating on mitigation strategies or third-party cybersecurity collaborations. The investigation continued without further public status updates beyond the initial disruption period.