Key Takeaways
- Mount Royal University (MRU) detected a cyber attack on Wednesday that disrupted multiple core services, including its main website, the MyMRU portal, on‑campus internet, and telephone systems.
- The university acted swiftly to contain the threat, engaged external cyber‑security experts, and activated its incident‑response protocols while the investigation remains in early stages.
- No confirmation yet exists regarding whether personal or institutional data was accessed or exfiltrated; MRU stresses that safety‑critical systems (fire detection, alarms, security) remain operational.
- Despite the outage, MRU kept campus open on Thursday, urged students to attend scheduled exams unless notified otherwise, and encouraged remote work for employees where feasible.
- Google Workspace services, notably Gmail, continued to function unaffected, providing a limited communication channel for the university community.
Background of the Incident
On Wednesday, Mount Royal University’s IT staff identified unusual activity across several network segments that indicated a malicious intrusion. The anomaly triggered the university’s security monitoring tools, prompting an immediate assessment. Recognizing the potential severity, MRU classified the event as a cyber attack and initiated its pre‑defined incident‑response plan to limit further propagation and protect critical assets.
Immediate Containment Measures
Upon confirmation of the threat, MRU’s internal security team isolated affected systems to prevent lateral movement. Network segmentation was employed, and certain services were taken offline as a precautionary measure. The university also issued internal alerts to faculty, staff, and students, advising them of the disruption and outlining steps to maintain essential communications through unaffected channels such as Google Workspace.
Engagement of External Expertise
Recognizing the complexity of modern cyber threats, MRU enlisted external cyber‑security specialists with expertise in forensic analysis, malware eradication, and threat intelligence. These consultants are working alongside the university’s IT department to conduct a deep dive into the attack vectors, identify any malicious code, and assess the scope of the breach. Their involvement aims to bring specialized tools and perspectives that may not be available in‑house.
Ongoing Investigation Status
As of the latest update on Thursday evening, the investigation remains in its early phases. MRU has not yet determined whether any personal information, academic records, research data, or other sensitive data was accessed, copied, or exfiltrated. The university emphasized that it will disclose findings as soon as they are verified, adhering to its commitment to transparency and regulatory compliance.
Impact on Core University Services
The cyber incident caused widespread disruption across several key platforms: the primary MRU website was inaccessible, the MyMRU student portal experienced downtime, on‑campus Wi‑Fi and wired internet connections were intermittently unavailable, and internal telephone services suffered outages. These interruptions affected routine administrative functions, online learning resources, and communication channels relied upon by students, faculty, and staff.
Continuity of Essential Services
Despite the outages, MRU confirmed that all life‑safety and security systems remained fully functional. Fire detection and alarm mechanisms, access control systems, and emergency communication networks continued to operate without impairment, ensuring that campus safety was not compromised. This assurance was critical in maintaining confidence among occupants that the physical environment remained secure during the digital disruption.
Academic and Operational Adjustments
In response to the service interruptions, MRU announced that the university would remain open on Thursday. Students were encouraged to attend their scheduled examinations unless they received direct notification of changes or cancellations. Faculty were advised to consider alternative assessment methods if online tools were unavailable, and staff were encouraged to work remotely where their duties permitted, leveraging any accessible virtual private network (VPN) or cloud‑based resources.
Availability of Google Workspace
One notable exception to the service outage was the continued availability of Google Workspace applications, including Gmail, Google Drive, and Google Calendar. Because these services are hosted externally and were not tied to MRU’s compromised internal infrastructure, they provided a vital lifeline for communication and collaboration. The university highlighted this continuity as a temporary workaround while internal systems are restored.
Future Steps and Preparedness
MRU has communicated that it will continue to monitor its networks closely, apply any necessary patches, and reinforce security controls based on the findings of the ongoing investigation. The university plans to review and potentially update its incident‑response policies, conduct additional staff training, and invest in advanced threat‑detection technologies to mitigate the risk of similar events in the future. By treating this episode as a learning opportunity, MRU aims to strengthen its overall cyber resilience.
Conclusion
The cyber attack on Mount Royal University disrupted a range of digital services but did not impair essential safety systems or external Google Workspace functionality. Through prompt containment, external expert involvement, and transparent communication, the university is managing the incident while striving to protect its community’s data and maintain academic continuity. As the investigation unfolds, further details will emerge regarding the nature of the breach and any potential data compromise, informing both immediate remediation and long‑term strategic improvements in MRU’s cybersecurity posture.