Oklahoma City University Suffers Ransomware Attack by Lockbit3

Victim Profile

Oklahoma City University (OKCU) is a distinguished private, coeducational, urban, and independent university situated in Oklahoma City, Oklahoma. Founded in 1904, it offers an extensive range of more than 100 undergraduate and graduate programs in various disciplines such as business, science, communications, health care, religion, performing arts, and more. The institution is celebrated for its inclusive community and diverse student body, committed to delivering a superior education and equipping students for successful careers.

Size and Vulnerabilities

With a student population of around 3,600, Oklahoma City University is considered a mid-sized institution. Despite being ranked among the least vulnerable to cyber threats in 2024, recent hospital attacks within the state suggest that such rankings may reflect broader demographic and awareness factors rather than specific institutional vulnerabilities. The university's public-facing website lacks detailed information on its cybersecurity protocols or any recent incidents, underscoring the critical need for educational entities to prioritize cybersecurity to safeguard sensitive information and system integrity.

Previous Cybersecurity Incidents

In 2022, Oklahoma State University – Center for Health Services incurred a substantial financial and reputational cost, agreeing to a $875,000 settlement following a hacking breach. This incident serves as a stark reminder of the potential consequences of cybersecurity lapses.

Mitigation Strategies

To counter the threat of ransomware attacks, educational institutions must adopt comprehensive cybersecurity strategies. These include conducting regular software updates, providing employee training, developing incident response plans, monitoring third-party security protocols, and enforcing stringent data access controls.

The ransomware attack on Oklahoma City University by Lockbit3 highlights the critical need for robust cybersecurity defenses in the education sector. Reflecting on the 2022 attack on the University of Oklahoma, it is evident that ransomware poses significant financial and reputational risks. Universities must therefore prioritize cybersecurity, implementing proactive measures to protect their infrastructure and data.

Sources

• Oklahoma City University
• The Cyber Express: University of Oklahoma Cyber Attack Confirmed, MOVEit Data Exposed
• KTUL: Oklahoma ranked among least vulnerable to cyber threats in 2024
• Spotlight on DASNR IT: Don't Be Held Captive to Ransomware
• HHS: Oklahoma State University – Center for Health Services Pays $875,000 to Settle Hacking Breach
• GovTech: Northeastern State University Shuts Down Network Over Cyber Threat