Cybersecurity

Cyber: Italian University La Sapienza Goes Offline After Cyberattack

2026-02-05 0 views admin
Cyber: Italian University La Sapienza Goes Offline After Cyberattack

Rome’s “La Sapienza” university has been targeted by a cyberattack that impacted its IT systems and caused widespread operational disruptions at the educational institute.

The university first disclosed the incident in a social media post earlier this week, saying that its IT infrastructure "has been the target of a cyberattack."

“As a precautionary measure, and in order to ensure the integrity and security of data, an immediate shutdown of network systems has been ordered,” the organization said.

The university, which is Europe’s largest by number of in-campus students, with over 112,500 enrolled, notified the authorities of the incident and formed a technical task force to initiate remediation and restoration procedures.

As of writing, the university’s website remains offline, and new status updates published on Instagram reflect a continued effort to recover from the cyberattack.

As of yesterday's announcement, temporary “infopoints” have been set up for students to provide information accessible through digital systems and databases that are currently unavailable.

Although the university has not disclosed much information about the attack type or the perpetrators, Italian newspaper Corriere Della Sera claims that the incident is a ransomware attack perpetrated by a pro-Russian threat actor called Femwar02 and resulted in data encryption.

The outlet released the information based on malware characteristics and operational patterns, which are similar to the Bablock/Rorschach ransomware.

This is a ransomware strain that first appeared in 2023, featuring fast encryption speeds and extensive customization options. Cybersecurity company Check Point estimated that it was a project built from bits of the leaked sources of Babuk, LockBit v2.0, and DarkSide.

According to Corriere Della Sera’s sources, a ransom exists, but the university staff has not opened it to avoid triggering the 72-hour timer. Hence, the ransom amount hasn’t been specified.

Source: BleepingComputer

🏷️ Tags

cybersecuritysecuritymalwareransomwareattack

More from Cybersecurity

Cyber: Phishing Campaign Targets Freight And Logistics Orgs In The Us, Europe

Cyber: Phishing Campaign Targets Freight And Logistics Orgs In The Us, Europe

2026-02-24 0
Cyber: Wynn Resorts Confirms Employee Data Breach After Extortion Threat

Cyber: Wynn Resorts Confirms Employee Data Breach After Extortion Threat

2026-02-24 0
Cyber: 1campaign Platform Helps Malicious Google Ads Evade Detection

Cyber: 1campaign Platform Helps Malicious Google Ads Evade Detection

2026-02-24 0
Cyber: New Attackers Now Need Just 29 Minutes To Own A Network 2026

Cyber: New Attackers Now Need Just 29 Minutes To Own A Network 2026

2026-02-24 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views