The university was maliciously attacked with malware and is currently trying to address the situation.
Sul Ross State University President Bill Kibler issued out a statement on the cyber-attack on Monday, June 24 at approximately 2:15 pm.
“Sul Ross State University experienced a malware attack on our system. Please be assured that information was not compromised and we are taking appropriate steps as we continue to assess the situation. We have begun implementing emergency response plans. The university will remain open and classes will continue. Summer classes have not been canceled.
Students should “stay tuned” for information on how to access Blackboard services. Students are further encouraged to call their professors for questions about class assignments and grades,” stated Kibler.
“We continue to discuss priority actions and will keep our campus communities updated as we learn more. Our number one priority is to ensure that we remain operational and business continues.”
Sul Ross State University Rio Grande College addressed the issue through a post online.
“All services are down until further notice. Do not attempt to use any tech services at this time. We continue to work with state and federal agencies on the ransomware issues. No ETA on a fix but it could take several days. We will keep you all informed. This does include Blackboard.”
Ransomware is a subset of malware in which the data on a victim's computer is locked, typically by encryption, and payment is demanded before the ransomed data is decrypted and access is returned to the victim.
The motive for ransomware attacks is nearly always monetary, and unlike other types of attacks, the victim is usually notified that an exploit has occurred and is given instructions for how to recover from the attack. Payment is often demanded in a virtual currency, such as Bitcoin so that the cybercriminal's identity is not known.
Ransomware malware can be spread through malicious email attachments, infected software apps, infected external storage devices, and compromised websites. Attacks have also used remote desktop protocol and other approaches that do not rely on any form of user interaction.