A cyber attack at Queensland’s second-largest university has caused campus printers to spit out ransomware notes in bulk.
- The Queensland University of Technology has been hit by a ransomware attack
- Multiple IT systems have been shut down as a safety measure
- Vice-Chancellor Margaret Sheil says the university has plans in place for such attacks
The Queensland University of Technology has shut down multiple IT systems as a precaution.
QUT Vice-Chancellor Professor Margaret Sheil said her own printer was among those affected this morning.
“In my case, it printed out until there was no more paper in my printer,” she said.
The ransom note purports to be from ‘Royal ransomware’, which Professor Sheil said ran a “well-known” ransomware scheme.
The United States health department recently issued a warning to hospitals about the ransomware, with attacks first reported in America in September.
“Royal is a newer ransomware, and less is known about the malware and operators than others,” warned American authorities in a note to healthcare departments two weeks ago.
The printed ransomware note says “your critical data was not only encrypted but also copied”, warning it could be published online unless a “modest royalty” is paid.
Professor Sheil said multiple systems were compromised, but none of the “core” student, staff or financial systems appeared to be involved.
The university has shut down all its IT systems as a precaution, as technical staff and external specialists carry out an investigation.
“Everything that’s sensitive in terms of holding data and so on, we’ve shut down,” Professor Sheil said.
“Most of the systems that are out of action are because we’ve shut them down or stopped access, and so that’s things like the system that manages all the student enrollment data, the system that the students access to get their course information, staff systems.
“There are other systems where they’re compromised – not necessarily shut down – but with a file that might have been locked by the attack.”
Staff and students have been in contact about the incident.
QUT is also communicating with students who received an offer to study at the university this morning. Students are able to accept an offer at the university, but will be unable to complete their documentation until IT systems are back online.
“We want to reassure those hopefully very excited new students that this won’t affect them,” Professor Sheil said.
Professor Sheil said the university had a plan in place to deal with cyber breaches, and federal authorities had been notified.
The federal Department of Education has confirmed it is aware of the incident.