Cyber Incident Victim: Louisiana State University Agricultural Center
Date:
Mar 2023
Location:
United States of America
Summary
Multiple Louisiana higher education institutions, including the Louisiana State University Agricultural Center, proactively shut down their campus networks following state law enforcement discovery of potential security compromises. The coordinated response disabled internet access, email systems, online learning platforms, and administrative tools across affected campuses, prompting some classes to shift temporarily to remote formats. While restoration of core services progressed within days—including Wi-Fi and email—full recovery required rebuilding network components with enhanced security measures. Investigators continued forensic analyses to determine potential data exfiltration, with commitments to notify individuals if personal information was impacted. This incident occurred amid a broader pattern of cyberattacks targeting educational institutions nationally, though no ransomware group officially claimed responsibility.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On March 24, 2023, the Louisiana State Police Cyber Crime Unit identified potential indicators of compromise within the networks of multiple Louisiana higher education institutions, prompting immediate containment measures. The University of New Orleans, LSU Agricultural Center, Nunez Community College, River Parishes Community College, and Southern University at Shreveport proactively disabled their campus internet systems following law enforcement advisories. This coordinated shutdown impacted core services across all institutions, including campus Wi-Fi, email systems, learning management platforms like Moodle, and administrative tools such as Workday and PeopleSoft. The University of New Orleans publicly confirmed the incident via Twitter, citing collaboration with the Governor’s Office of Homeland Security and Emergency Preparedness and Louisiana State Police to neutralize the cybersecurity threat. River Parishes Community College Chancellor Quintin Taylor characterized the event as requiring “immediate attention,” revealing that forensic analysis detected a cyber risk necessitating network component rebuilding and security enhancements. Despite the disruption, Taylor noted that off-site student information systems remained unaffected.
Institutional responses varied in scope and transparency through the following days. The University of New Orleans began incremental service restoration by March 26–27, recovering campus email, Zoom, and limited Wi-Fi, though critical systems like PeopleSoft remained offline. They warned the campus community about potential data compromise investigations and pledged breach notifications in compliance with state laws. Southern University at Shreveport restored partial network functionality but maintained virtual classes indefinitely due to lingering guest Wi-Fi and application outages. Nunez Community College shifted to remote operations through March 27, anticipating full restoration by March 28. Notably, the LSU Agricultural Center neither released public statements nor responded to media inquiries regarding its involvement or recovery status. Parallel investigations by Louisiana State Police continued across all institutions to determine attack vectors and data exfiltration scope, though no entity confirmed ransomware involvement despite contextual patterns of attacks on Louisiana universities earlier in 2023. The incident’s operational impacts included temporary academic workflow disruptions, with universities urging faculty leniency toward students affected by connectivity limitations during system restoration.