What happened?

K-State has experienced a disruption to certain network systems. Upon detection, university IT took immediate steps to investigate the disruption, isolating the areas of concern. We've confirmed that these disruptions were the result of a recent cybersecurity incident.

When did this happen?

K-State IT staff discovered the disruption on January 14, 2024. In response, the department took immediate steps to contain the incident, which included taking certain systems offline and initiating an investigation, which is still ongoing.

Why did the university require a password reset on Jan. 23, 2024?

As part of the university's ongoing commitment to information security, we took this step out of an abundance of caution to protect our systems and your information. All students, faculty and staff needed to reset their password in order to regain access to centralized IT services, including Webmail, Canvas, HRIS and more.

Were we asked to reset our passwords because of an additional cybersecurity incident?

No. Upon detection of a disruption to some network systems the week of Jan. 14, university IT took immediate steps to investigate the disruption, isolating the areas of concern. This password reset was an intentional step that we took out of an abundance of caution to protect our systems and your information. We are continuing to investigate the incident and will provide updates at k-state.edu/media/update/it-cybersecurity.

Why did the alert to change my password go out at 6 a.m. CT on Jan. 23?

This time was selected in an attempt to remind students, faculty and staff of the Jan. 22 password reset announcement well in advance of the start of classes Tuesday to ensure minimal access issues.

I can't access my Webmail, Canvas, or other platforms. Where do I go for help?

Visit the password resert page available on the IT update site for detailed instructions on how to reset your eID password. You may also start an online chat with the IT Service Desk.

I was able to successfully reset my password, but some of the systems I typically use/access are now not functioning. What should I do?

We understand the importance of maintaining business and academic continuty during this time.

• Students: If you experience an outage related to a class, start by inquiring with your professor or by contacting the IT Service Desk. If you an experience an outage related to a campus job, inquire with your supervisor directly.
• Faculty/Staff: Some faculty and staff continue to experience system outages due to unrestored data integrations, as these systems are still intentionally offline to allow for the ongoing investigation.
  • Parallel systems, or systems that duplicate a core function that is otherwise available via a centralized system, will not be restored to their original state. Business processes will need to be re-routed, and guidance will be provided by the appropriate cabinet-level authority.
  • For functions that are not duplicated, the Division of IT will work with the originating unit to find a reasonable path forward.
  • This work will take some time, and a collaborative team with representatives from the Office of the Provost, Office of the Vice President for Administration and Finance, and Office of the Vice President for Research is reviewing catalogued outages, prioritizing their restoration accordingly.

When will K-State's network systems be fully operational?

The investigation is still ongoing, so we do not yet have a definitive timeframe. Using similar cybersecurity incidents at other institutions across the country as a baseline, we recognize that full operation is unlikely to be restored to impacted systems within a number of days. Plainly stated, this will take some time. K-State IT is working diligently with vendor partners to evaluate systems and bring them back online as quickly and safely as possible.

When will you have more information?

The investigation is ongoing and will take time to complete. K-State is committed to doing everything it can to protect the integrity of the ongoing investigation and to take steps to ensure the security of our network. As updates are available, they will be shared with the university community at k-state.edu/media/update/it-cybersecurity.

I’m a new student or employee. How can I access webmail, Canvas, KSIS, HRIS, etc.?

The ability to create an eID or WID is restored and available.

New students are able to create a K-State eID; access webmail, Duo, KSIS and Canvas; accept financial aid offers, complete KSN profiles and applications; myLafene patient portals and complete K-State billing and add authorized users in KSIS. If you need assistance, please contact the IT Service Desk.

Students admitted for future semesters can create K-State eID, accept financial aid offers, complete KSN profiles and applications and add authorized users in KSIS.

New faculty and staff can create a K-State eID; access webmail, HRIS, Duo, Teams, VPN and Zoom. If you need assistance, please contact the IT Service Desk.

What should I be doing to assist in this situation?

If you notice anything suspicious as you engage with university technology, students should reach out to the IT service desk. Faculty and staff should reach out to their departmental IT points of contact. Everyone should heed cybersecurity best practices.

Is there anything else I should be on the lookout for?

It is possible that phishing attempts will increase during this time. Stay vigilant, and follow best practices to avoid phishing attempts.

How do I stay informed?

Visit k-state.edu/media/update/it-cybersecurity for the latest information.

I have more questions regarding the cybersecurity incident I would like answered, who can I speak with?

K-State has deployed numerous resources to do everything we can to protect the integrity of the ongoing investigation and to take steps to ensure our network systems can be safely and securely brought back online. This work will take time to complete. When updates are available, they will be shared with the university community at k-state.edu/media/update/it-cybersecurity.