Mount Saint Mary College

Mount Saint Mary College, also known as Mount St. Mary College, is an educational institution whose headquarters are situated in the United States. The organization functions as a college, providing instructional services to individuals who enroll for academic study. As a higher education provider, its core activity involves delivering courses and awarding credentials to students who complete prescribed programs of study. The college is identified by its two aliases, which appear in formal documents and public references. While the available information does not disclose specific figures regarding enrollment, faculty size, or annual revenue, the institution’s classification as a college indicates that it operates within the postsecondary education sector of the United States.

In December 2022, Mount Saint Mary College experienced a ransomware incident attributed to the Vice Society cybercriminal group. The attack compromised the college’s information technology systems, leading to the disconnection of network segments to contain the spread of the malicious software. Leadership chose not to meet the ransom demand, instead engaging federal authorities, including the Federal Bureau of Investigation, and contracting external cybersecurity specialists to investigate the breach, restore affected services, and strengthen defensive controls. The disruption caused a short postponement of winter term classes, although the spring semester commenced according to the original schedule. Investigators determined that personal data belonging to individuals who had been affiliated with the college over the preceding ten years might have been accessed during the event. Consequently, the institution issued notifications to potentially affected parties, arranged for credit monitoring and identity theft protection services, and established a dedicated call center to address inquiries and provide assistance. The response effort involved coordination with law enforcement, internal IT teams, and third‑party experts to rebuild systems and implement enhanced security protocols aimed at reducing the likelihood of similar incidents in the future.