University of Oklahoma Investigates Cyberattack, Possible IT Disruptions
The University of Oklahoma (OU) in Norman, Oklahoma, is investigating a cybersecurity incident after detecting unusual activity on its IT network. As a precaution, the university has isolated certain systems, though it has not confirmed whether this has caused any IT service disruptions. The Fog ransomware group has claimed responsibility, alleging it stole 91 megabytes of data, including employee records, financial documents, and other sensitive information. The group disclosed the attack on its leak site on Jan. 14, the same day OU’s spring semester began, following a campus closure due to a snowstorm. However, it is unclear when the attack occurred or whether the university was aware of the breach before the ransomware group’s public disclosure.
While OU has not detailed the impact on students, faculty, or staff, ransomware attacks on universities have previously disrupted email, student portals, learning management systems, and administrative functions. The university has not said whether it will pay a ransom and continues to implement security measures. The Fog ransomware group, which primarily targets educational institutions using compromised VPN credentials, has been linked to multiple attacks on U.S. universities. Students, faculty, and staff are advised to monitor official university channels for updates on IT service availability and security measures.