On the eve of classes starting for the fall term, the University of Michigan has decided to cut the internet connection of all campuses.
The University of Michigan has more than 30,000 students and has a very large hospital with over 550 beds on its main hospital campus.
It will be interesting to see what prompted the securing of the network. Was this just focused at the hospital, students, or both? Only time will tell.
Sunday afternoon, after careful evaluation of a significant security concern, we made the intentional decision to sever our ties to the internet.
I feel like most big announcements like this end up being Ransomware. Cutting off from the wider internet feels like a weird move to defend/mitigate that? Unless it’s to reduce exfiltration?
If enough university hardware was compromised, it could be used combined with their massive bandwidth to springboard into all kinds of attacks.
I remember my university disabled SSH access indefinitely for all students a year before my graduation.
It was pretty sweet while it lasted, but apparently bad actors kept attacking it.
I hope they are transparent about the reasons for this outage after they have resolved the issue(s)