Ransomware Attack on Pi Kappa Phi - Auburn University

Victim Profile

Pi Kappa Phi at Auburn University is a fraternity that upholds the standards and challenges set by the Pi Kappa Phi fraternity to foster exceptional development among its members. The fraternity, known as Alpha Iota, was chartered in 1926 and has been active in Auburn, Alabama since 2009. They are involved in various campus organizations, such as the Auburn Bass Fishing Team and the Auburn University Lacrosse Team.

Company Size and Industry Standing

The fraternity operates in the Education sector and stands out for its commitment to developing its members through various activities, events, and community involvement. They provide information about their chapters, philanthropy, and leadership on their website, fostering a strong sense of brotherhood among members.

Attack Details

The ransomware attack on Pi Kappa Phi's website, auburnpikapp.org, involved the exfiltration of 12 GB of sensitive data, including accounting, financial, and banking information. The attacker, LockBit 3.0, subsequently leaked this data, highlighting the severity of the breach and the potential impact on the fraternity.

Ransomware Group Overview

The LockBit 3.0 ransomware group is an evolution of the LockBit group, known for its advanced capabilities and evasive techniques. Operating under a Ransomware-as-a-Service model, LockBit 3.0 has been actively recruiting affiliates and targeting a wide range of businesses and critical infrastructure organizations globally.

LockBit May Attacks

This ransomware attack on Pi Kappa Phi at Auburn University is part of the May 2024 attacks by LockBit 3.0. Following the disruption of its infrastructure during "Operation Cronos," LockBit resurfaced with vigor, targeting over 50 victims within hours of reactivating its platform. The group's ability to regroup and strike back efficiently raises concerns about current strategies' adequacy in combating cybercrime. Cybersecurity experts stress proactive measures and collaborative intelligence sharing to counter LockBit's resurgence and address underlying vulnerabilities in digital ecosystems.

Sources:

• https://www.greekrank.com/uni/32/fraternity/Pi-Kapp-Pi-Kappa-Phi/85/rating/
• https://www.auburn.edu/academic/societies/phi_kappa_phi/
• https://timesofindia.indiatimes.com/gadgets-news/chinese-lender-icbc-pays-ransom-for-us-unit-cyberattack-whats-lockbit-3-0-and-why-its-dangerous/articleshow/105193320.cms
• https://wazuh.com/blog/detecting-lockbit-3-0-ransomware-with-wazuh/