Cyber Incident Victim: Hochschule Harz

On or around January 31, 2023, the Hochschule Harz (Harz University of Applied Sciences) in Wernigerode, Saxony-Anhalt, experienced a cyberattack that disrupted its operations. Following the detection of unspecified anomalies in its IT systems, the institution proactively shut down all its digital infrastructure as a precautionary measure, as confirmed by a university spokesperson on the afternoon of February 1. This immediate containment action resulted in a total loss of online services, rendering the institution offline while investigations commenced. The university initiated a damage assessment process to determine whether data compromise or system corruption had occurred. Recovery efforts proceeded methodically, prioritizing the restoration of critical services in a phased approach. The university’s public-facing homepage was scheduled for reactivation first, followed by the email system and other essential services, though no specific timeline was provided for full operational restoration.

The incident occurred during a period of reduced academic activity, with the examination phase having recently concluded and the lecture-free period imminent, potentially mitigating immediate disruptions to teaching and assessments. The university spokesperson contextualized the attack within a broader trend of cyber incidents targeting German higher education institutions, though no specific threat actor or attack vector was identified. With approximately 3,000 students enrolled, the outage affected institutional communications and digital services, though the spokesperson did not elaborate on specific operational or academic consequences beyond the system unavailability. The university’s response remained focused on forensic examination and controlled reactivation of systems without disclosing further technical details about the nature of the anomalies or the scope of the attack’s impact.