Ransomware Attack Allegedly Targets New York's Hartwick College, Disrupting Operations and Potentially Exposing Data

Hartwick College in Oneonta, New York, allegedly suffered a ransomware attack on October 27, 2024, reportedly carried out by the Chort ransomware group. The incident caused significant disruption, leading to the cancellation of classes and halting operations for non-essential staff. Students were notified of assignment deadline extensions and the postponement of pre-registration activities. The Chort gang later added Hartwick College to its data leak site, claiming to have stolen sensitive information, including full names, dates of birth, passport numbers, and confidential business data. Despite these claims, Hartwick College has not yet issued an official statement confirming the breach or addressing its scope.

The lack of transparency from Hartwick College has left students, staff, and the public in the dark about the nature and severity of the alleged attack. While the college previously invested in cybersecurity measures, including penetration testing and implementing a Written Information Security Program, no updates have been provided regarding the effectiveness of these safeguards or steps taken in response to the incident. This silence has heightened concerns about the potential exposure of personal data and the institution's ability to handle such crises effectively, raising questions about its communication strategy and preparedness for cyber threats.