lockbit3 attacks Whitworth University

Incident Date:

August 10, 2022

World map

Overview

Title

lockbit3 attacks Whitworth University

Victim

Whitworth University

Attacker

Lockbit3

Location

Spokane, USA

Washington, USA

First Reported

August 10, 2022

Whitworth University Suffers Ransomware Attack by Lockbit3

Victim Profile

Whitworth University, a private Christian university in Washington, has been targeted by the ransomware group Lockbit3, as reported on their dark web leak site. The university's website is whitworth.edu, and they operate in the Education sector. The ransomware attack, discovered in August 2022, was described by university officials as a "very sophisticated security issue involving our network systems." This incident may have exposed sensitive personal information of students, alumni, employees, and donors, leading to a data breach affecting more than 65,500 individuals.

Company Size and Industry Standing

As a significant private institution, Whitworth University has a large student body, with the ransomware attack impacting over 65,593 people. The university has been actively working to restore normal operations, with expectations to achieve 95 percent restoration by August 31, 2022.

Vulnerabilities and Targeting

The ransomware attack on Whitworth University underscores the vulnerabilities of educational institutions to cyber threats. Despite efforts to enhance its cyber defenses, the university's information systems were infiltrated, resulting in the compromise of sensitive personal data. This incident highlights the critical need for robust cybersecurity measures in the education sector, where sensitive information is frequently at risk.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.