Butler County Community College Suffers Ransomware Attack

Butler County Community College (BC3) has been targeted by the ransomware group vicesociety, as reported on their dark web leak site. The college operates in the Education sector and experienced a significant cybersecurity incident in late November 2021. BC3's IT division discovered that certain devices connected to the college's network had been encrypted by a ransomware program.

In response, BC3 initiated its emergency protocols, isolating affected devices and shutting down specific systems to contain the breach. The college engaged a third-party forensic firm for investigation assistance and notified the FBI, with whom they are cooperating in the ongoing investigation.

Amidst this crisis, BC3 prioritized the restoration of essential services for its students. The college managed to resume the last week of fall semester credit classes in remote or online formats by December 6, ensuring that final examinations could proceed from December 13 to December 18 as scheduled.

This incident at BC3 occurred concurrently with a similar ransomware attack at Lewis and Clark Community College, marking a concerning trend of increasing ransomware attacks targeting American higher education institutions.

Victim Profile

Located in Butler, Pennsylvania, Butler County Community College offers a wide array of programs and services, including credit and noncredit courses, workforce development, and community education. In the wake of the ransomware attack, the college has maintained transparency, providing regular updates through its news website and notifying the community via emergency texts, social media posts, and robo calls.

Vulnerabilities

The ransomware attack on BC3 underscores the cybersecurity vulnerabilities inherent to educational institutions. Community colleges like BC3, despite having cybersecurity insurance, often lack advanced cyber defenses, rendering them prime targets for ransomware operatives. These attackers frequently leverage phishing emails and stolen login credentials to infiltrate IT networks, exfiltrate sensitive data, and disrupt system access.

Mitigation Strategies

To counter the threat of ransomware, educational institutions are advised to implement multifactor authentication, conduct regular software and system updates, and caution users against the use of public Wi-Fi networks. Additionally, network administrators should recognize the relatively low barriers to entry for launching ransomware attacks, which often hinge on the exploitation of compromised credentials.

Sources

• Butler County Community College Home
• BC3 Alert: Ongoing IT Situation
• Butler County, Lewis and Clark Community Colleges Hacked
• Butler County Community College Honest About Cyber Attack
• BC3 update on ransomware attack