**Italian University La Sapienza Still Offline After Cyber Attack**

Rome's La Sapienza University, one of Italy's most prestigious institutions, has been offline since February 2 due to a devastating cyber attack that has left students without access to crucial services. The university, which boasts over 122,000 students, has been forced to shut down its entire IT infrastructure to mitigate the threat and prevent the spread of malware.

According to reports, the cyber attack appears to be a ransomware assault, with the attackers using a next-generation strain known as 'Bablock,' one of the most destructive types of malware in 2025. The same malware was allegedly used by a Russian cybercrime group tracked as Femwar02, which has been linked to several high-profile attacks in recent months.

Public reports confirm that La Sapienza University's IT systems were breached using Bablock/Rorschach ransomware, a family of malware that borrows code from leaked Babuk, LockBit v2.0, and DarkSide code. This sophisticated attack has left students unable to access essential services, including exam booking, tuition payments, and faculty contacts.

La Sapienza University has been communicating with students via social media, providing limited updates on the situation. However, officials have confirmed that they are working closely with law enforcement agencies and the Italian National Cybersecurity Agency (ACN) to respond to the incident and prevent further damage.

"As a precautionary measure, and in order to ensure the integrity and security of data, an immediate shutdown of network systems has been ordered," the university stated. "Decisions are being made in close coordination with offices, learning and administrative structures, and student representatives on the University's governing bodies, evaluating extensions and flexible arrangements to protect careers."

The attack has sparked concerns about the vulnerability of Italian universities to cyber threats. As the investigation continues, La Sapienza University officials are working to determine the scope of the security breach before restoring data from backups.

While the university has reported that it is managing the emergency in a unified and coordinated manner, students are growing increasingly frustrated with the lack of clear communication and support. The incident highlights the need for greater investment in cybersecurity measures and more effective communication strategies to mitigate the impact of cyber attacks on educational institutions.

**Update:**

The Italian media outlet La Stampa has reported that investigators have confirmed suspicions that a pro-Russian group was behind the attack, citing evidence that the malware avoided encrypting devices set to Russian or other post-Soviet languages. This development adds to concerns about the increasing threat of cyber attacks from state-sponsored actors.

**Related Links:**

Follow me on Twitter: @securityaffairs and Facebook and Mastodon for more updates on this developing story.