Phones, email, classes disrupted in University of The Bahamas ransomware attack

A ransomware gang has shut down the internet and telephone systems used by the University of The Bahamas, forcing changes on administrators, professors and students.

The school, which serves 5,000 students across three campuses, said the attack began on February 2 and impacted all online applications including email platforms and systems used for classwork. All online classes were cancelled. 

A day later, the school confirmed it was dealing with a ransomware attack and said it is working with law enforcement to contain the incident. 

“While we are actively investigating the full scope of this incident, we believe that personal information may have been impacted,” the school said, urging students to change all of their passwords. 

In-person classes have been able to continue but the school was forced to extend deadlines for those applying to the university and make adjustments for assignments with upcoming deadlines. 

Only cash will be accepted at school kiosks because credit card machines are down. As of Thursday evening, the school’s telephone systems were still offline but temporary mobile numbers were provided to students who need to contact specific offices. The school’s website returned to service on Friday. 

“University of The Bahamas is actively addressing and containing a ransomware incident that has impacted our online network,” the school said in a statement on Thursday.  

“We are implementing a phased approach to network restoration, incorporating enhanced security protocols to safeguard our systems. Our Technology Services team, in collaboration with industry experts, is diligently working to ensure a comprehensive and secure recovery process.” 

No ransomware gang has taken credit for the incident as of Friday afternoon. The university is one of the largest employers in The Bahamas, with more than 700 faculty and staff. 

The school did not respond to requests for comment about whether the ransomware group identified itself or if a ransom would be paid. 

The attack comes three weeks after the island territory southeast of The Bahamas — Turks and Caicos — was hit with its own ransomware attack that damaged government systems and caused widespread issues on the islands. 

Ransomware gangs continue to target Caribbean nation government institutions, many of which rely on larger nations for cybersecurity resources and protection. Bermuda was battered by a ransomware gang that targeted the island’s government and another unnamed Caribbean island in 2023. 

Martinique, Trinidad and Tobago, the Dominican Republic and Guadeloupe have all dealt with ransomware attacks in the last year while Costa Rica — a Central American country along the Caribbean Sea — faced a wide-ranging incident affecting several parts of its government.