ANU Closes Investigation into Alleged Dark Web Cyber Attack

By Jasmine Cook

Last Monday, February 17th 2025, Cyber Daily reported that ANU was investigating an alleged ransomware attack by the dark web hacking group FSociety. A post on the dark web addressed to the board of the ‘A********* N******* U*********’ claimed that the group had “(taken) over the servers… and extracted all data,” threatening to release it within 7 days (around March 4th), unless the university met their demands. 

No ransom amount was provided, and no further information was provided regarding the nature or extent of the data leaked.

This is not the first time ANU has faced the threat of a cyberattack. In 2019 a “spear phishing attack” compromised up to nineteen years’ worth of student and staff data, including names, phone numbers, bank account details, tax file numbers, addresses, and dates of birth. The attack used a targeted email capable of breaching the system without being opened. 

Pressure was placed on the ANU to implement further data-safeguarding measures. Outlined in the Incident Report, these included two-factor authentication, a review of firewall coverage, network zoning and a working group review chaired by the Chief Privacy Officer. It appears these measures have largely been implemented since. This response was informed by advice that ANU was likely to “be subject to secondary attacks from other opportunistic actors” once the breach was made public. 

According to the Office of the Australian Information Commissioner (OAIC), “the number of data breaches reported in the first half of 2024 was at its highest in three and a half years”. 

“As people live more of their lives in the digital sphere, they are generating more– and more personal – data than ever before… And that data represents an enticing target for malicious actors around the world,” said MIT Professor Stuart Madnick in 2022. As the demand for such data grows, governments, private companies and universities are likely to face increasing cyberattacks, given the valuable nature of the data they store.  

UNSW Prof Richard Buckland, speaking on a panel in 2020, said, “The university sector is in a really interesting position, because we have lots of secrets that can be commercialised, the way our funding works we need to commercialise them… But also you have to have a mission to disseminate knowledge, science and other academic fields by sharing and being open.” 

That said, the updated security measures implemented in 2019 appear to have been successful so far. Regarding last week’s alleged data breach, a University spokesperson said, “ANU has investigated the claim, alongside the Australian Cyber Security Centre. There is currently no indication of an active ransomware threat against ANU. This investigation is now closed.” 

Graphics by Shé Chani

Know something we don’t know? Email [email protected] or use our anonymous tip submission.

If you have an issue with this article, or a correction to make, you can contact us at [email protected], submit a formal dispute, or angry react the Facebook post.

Want to get involved? You can write articles, photograph, livestream or do web support. We’re also looking for someone to yell “extra!” outside Davey Lodge at 1AM. Apply today!