Comment Re:Probably Compromised Systems (Score 3, Informative) 19
I have some inside knowledge on this one. The PR folks who were talking to the media and doing these releases keep confusing "WiFi" with "the network" and just about anything else techie.
The University of Michigan took down their core network in order to isolate the security incident. The most popular theory of the security incident is correct. In this case, it was targeting specific research data that is highly controlled. Additionally, there were some internal attacks going on the network that didn't seem targeted but was most likely used to distract the security teams from the actual target. Taking down the core network and essentially "unplugging" from the network was only way to disconnect the bad actors and make sure all systems were healthy before they could reconnect. And given how large and complex their network is, that takes a LONG time to audit and evaluate every system to make sure others weren't compromised.
The WiFi was just ancillary damage. It wasn't the core issue. Just constant bad reporting.