Cyber Incident Victim: Collège Ahuntsic

On Wednesday evening, May 15, 2024, Collège Ahuntsic in Montreal initiated precautionary measures by shutting down all internal IT systems following indications of a potential cybersecurity incident. By Thursday morning, May 16, the institution escalated its response by closing the campus entirely and postponing all regular teaching activities, continuing education courses, and administrative operations. Management communicated via Facebook that only security personnel, maintenance staff, and IT employees were required to report to work, while all other staff and students were instructed to remain off-site. A critical directive instructed the entire college community to avoid using any institution-provided workstations or laptops to prevent potential malware propagation or data compromise. This campus-wide closure represented the most severe operational disruption since the incident began, reflecting the administration's assessment of systemic vulnerabilities.

The college restored normal IT operations by Thursday evening, May 16, announcing via its website that academic activities would resume fully on Friday, May 17. Administrators concurrently released adjusted schedules for the academic calendar and examination period to accommodate the disruption. No details were disclosed regarding the nature of the cyber threat, whether data was accessed or exfiltrated, or if ransom demands were issued. The incident caused measurable operational impacts, including canceled classes, suspended research activities, and restricted access to digital resources during the closure period. Collège Ahuntsic concluded its public communications by confirming system restoration without specifying whether forensic investigations were ongoing or if third-party cybersecurity experts had been engaged.