Cyber Incident Victim: NorthWest Arkansas Community College

On July 30, 2024, Northwest Arkansas Community College (NWACC) detected a cyber threat during morning operations, prompting an immediate, intentional shutdown of its entire technology network as a protective measure. The incident escalated when attackers distributed a typed ransom note to all campus printers, threatening to publish college data on "TOR darknet sites" unless payment was made. NWACC Vice President of Student Affairs Justin White confirmed during a July 31 press conference that no ransom had been paid and stated there was no evidence that student or employee records had been accessed by external entities. The college engaged an external cybersecurity team through its insurance provider, who worked overnight to address the breach while coordinating with the FBI's Little Rock field office. Network systems remained offline through July 31 as security teams methodically assessed and cleared components for reactivation.

The cyberattack disrupted NWACC's email systems, though college phones and public websites remained operational. White emphasized campus safety and established a dedicated text line (479-309-5532) for communications during the outage. Response efforts prioritized system-by-system restoration, with cleared systems being progressively reopened to faculty, staff, and students. The institution's preexisting cybersecurity insurance policy facilitated rapid engagement of specialized incident response resources. While operational impacts persisted through the reporting period, no data exfiltration or unauthorized access had been confirmed. Restoration timelines remained unspecified as forensic investigations and system validations continued under the direction of cybersecurity professionals and federal law enforcement.