Cyber Incident Victim: Monroe College
Date:
Jul 2019
Location:
United States of America
Summary
Monroe College experienced a ransomware attack that encrypted its systems, disrupting campus operations and online services. Attackers demanded a $2 million Bitcoin ransom, though the institution refused payment and restored systems from backups. The incident compromised administrative functions and student portals, highlighting vulnerabilities in the education sector's cybersecurity defenses. While operational recovery was prioritized, the full scope of potential data exposure remained unclear. The attack underscored the financial and operational risks posed by ransomware threats targeting academic infrastructure.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Monroe College, a for-profit institution based in the Bronx, New York City, was hit by a ransomware attack that severely impacted its operations. The attack, which occurred in July, paralyzed the college's systems, affecting nearly 8,000 students across its campuses in Manhattan, New Rochelle, and St. Lucia. The attackers demanded a significant ransom in exchange for restoring access to the college's systems.
According to reports, the attackers demanded 170 Bitcoin, which was valued at approximately $1.8 million at the time of the attack. The ransom demand was a clear indication that the attackers were motivated by financial gain. The college's administration was faced with a difficult decision: whether to pay the ransom or attempt to recover its systems through other means.
The attack had a significant impact on the college's operations. With its systems down, the college was forced to rely on analog methods to continue functioning. This meant that students and faculty had to resort to more traditional methods of communication and information sharing, such as paper-based records and face-to-face meetings. The college's administration worked to establish a microsite to provide updates and information to students and faculty, but the attack still caused significant disruptions.
The college's president, Marc Jerome, stated that the college was working feverishly to bring everything back online and was working with the appropriate authorities to resolve the situation as quickly as possible. The college's administration also sent out workaround instructions to students, providing them with alternative methods for accessing course materials and completing assignments.
The attack on Monroe College is just one example of the growing threat of ransomware attacks on educational institutions. These types of attacks can have devastating consequences, including the disruption of critical systems, the loss of sensitive data, and significant financial costs. In recent years, there have been numerous high-profile ransomware attacks on schools and universities, highlighting the need for robust cybersecurity measures to prevent and respond to these types of incidents.
The attack on Monroe College also highlights the importance of having a comprehensive backup plan in place. With the attackers demanding a significant ransom in exchange for restoring access to the college's systems, having backups of critical data and systems would have allowed the college to recover more quickly and minimize the impact of the attack.
The college's administration worked closely with local law enforcement officials and the FBI to investigate the attack and determine the identity of the attackers. However, at the time of the attack, it was unclear whether the college would pay the ransom or attempt to recover its systems through other means.
The attack on Monroe College serves as a reminder of the importance of cybersecurity in the education sector. With the increasing reliance on technology in educational institutions, the risk of cyber attacks is growing. Educational institutions must take proactive steps to protect themselves against these types of threats, including implementing robust cybersecurity measures, providing training and awareness programs for faculty and staff, and having comprehensive backup and disaster recovery plans in place.
The impact of the attack on Monroe College was significant, with nearly 8,000 students affected across its campuses. The attack disrupted critical systems, caused significant financial costs, and highlighted the need for robust cybersecurity measures to prevent and respond to these types of incidents. The college's administration worked to establish a microsite to provide updates and information to students and faculty, but the attack still caused significant disruptions.
The attack on Monroe College is a reminder that ransomware attacks can have devastating consequences for educational institutions. These types of attacks can disrupt critical systems, cause significant financial costs, and result in the loss of sensitive data. Educational institutions must take proactive steps to protect themselves against these types of threats, including implementing robust cybersecurity measures and having comprehensive backup and disaster recovery plans in place.
The college's administration worked to resolve the situation as quickly as possible, but the attack still had a significant impact on its operations. The attack disrupted critical systems, caused significant financial costs, and highlighted the need for robust cybersecurity measures to prevent and respond to these types of incidents. The college's experience serves as a reminder of the importance of cybersecurity in the education sector and the need for proactive measures to protect against these types of threats.