San Jacinto College’s Security Operations Center (SOC) faced real-time cyberattacks targeting its network, including suspicious login attempts from foreign locations and brute-force password attacks (e.g., dozens of incorrect password trials). While the article highlights the SOC’s role in training students to combat live threats, it implies the college’s network was actively probed or compromised in ways that could escalate to data breaches, unauthorized access, or operational disruptions. The SOC’s current capacity is limited to internal protection, but the college seeks funding to expand it into a regional cybersecurity hub, suggesting existing vulnerabilities may have reputational or financial risks if unmitigated. The attacks, though intercepted during training, reflect a persistent threat landscape where educational institutions are prime targets for cyber espionage, credential theft, or ransomware precursors. No explicit data loss or ransomware was reported, but the proactive defense measures (e.g., confidentiality agreements, screened classrooms) underscore the severity of the threats faced.
TPRM report: https://www.rankiteo.com/company/san-jacinto-college-center-for-petrochemical-energy-and-technology
"id": "san4514745102825",
"linkid": "san-jacinto-college-center-for-petrochemical-energy-and-technology",
"type": "Cyber Attack",
"date": "4/2025",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Higher Education',
'location': 'Houston, Texas, USA',
'name': 'San Jacinto College',
'size': 'Community college (2,200+ info security '
'workers in Houston metro area; 190 associate '
'+ 95 bachelor students in cybersecurity '
'programs)',
'type': 'Educational Institution'},
{'location': 'Houston region, Texas, USA',
'name': 'Potential Future Partners (e.g., Fort Bend '
'County Library, local businesses)',
'type': ['Government', 'Private Sector']}],
'attack_vector': ['Real-time cyberattacks (e.g., brute-force login attempts, '
'suspicious logins from foreign countries)',
'Threat hunting exercises'],
'date_publicly_disclosed': '2025-04-09',
'description': 'San Jacinto College operates a live Security Operations '
'Center (SOC) where students gain hands-on experience '
'combating real-world cyber threats targeting the college’s '
'network. The college seeks $4.5 million in state funding to '
'expand the SOC into a regional cybersecurity hub, providing '
'incident response services to local businesses and '
'institutions while addressing Houston’s cybersecurity talent '
'gap. The center currently trains students in threat hunting, '
'incident response, and network protection, with plans to '
'scale capacity, add partnerships, and integrate dual-credit '
'programs for high school students.',
'impact': {'brand_reputation_impact': ['Positive (showcasing proactive '
'cybersecurity education)',
'Potential reputational boost if '
'regional hub succeeds'],
'operational_impact': ['Enhanced student training',
'Potential regional incident response '
'capabilities if expanded'],
'systems_affected': ['San Jacinto College network (monitored for '
'threats)',
'Potential future partners (e.g., Fort Bend '
'County Library)']},
'investigation_status': 'Ongoing (funding request pending; center operational '
'in training capacity)',
'lessons_learned': ["Hands-on SOC experience bridges the 'experience gap' for "
'cybersecurity graduates.',
'Partnerships with local entities (businesses, schools) '
'can amplify training impact and regional security.',
'State funding is critical to scaling cybersecurity '
'education infrastructure.',
'Dual-credit and apprenticeship programs can accelerate '
'workforce readiness.'],
'motivation': ['Educational training',
'Workforce development',
'Regional cybersecurity resilience'],
'post_incident_analysis': {'corrective_actions': ['Expand SOC infrastructure '
'with state funding.',
'Integrate real-world '
'incident response training '
'for regional entities.',
'Scale student enrollment '
'via larger facilities and '
'dual-credit programs.',
'Strengthen industry '
'partnerships for '
'internships and job '
'placements.'],
'root_causes': ['Cybersecurity talent gap in '
'Houston (6,200 unfilled jobs).',
'Lack of hands-on experience for '
"graduates ('experience paradox').",
'Limited SOC capacity (current '
'classroom serves only 24 students '
'at a time).']},
'recommendations': ['Secure $4.5M state funding to expand SOC into a regional '
'hub.',
'Forge partnerships with Houston-area businesses, school '
'districts, and institutions (e.g., Fort Bend County '
'Library).',
'Increase classroom capacity (currently limited to 24 '
'students at a time).',
'Develop internship/apprenticeship pipelines with '
'employers like Cisco and JP Morgan Chase.',
'Model expansion after Angelo State University’s Regional '
'SOC (24/7 operations, paid internships).',
'Advocate for legislative support before the June 2 '
'budget deadline.'],
'references': [{'date_accessed': '2025-04-09',
'source': 'Houston Landing',
'url': 'https://www.houstonlanding.org/2025/04/09/san-jacinto-college-cybersecurity-center-expansion/'},
{'source': 'Cyberseek (job market data)',
'url': 'https://www.cyberseek.org/'},
{'source': 'U.S. Department of Labor (Texas cybersecurity job '
'growth projections)',
'url': 'https://www.bls.gov/'}],
'response': {'communication_strategy': ['Media coverage (Houston Landing)',
'Legislative funding requests',
'Community outreach for partnerships'],
'containment_measures': ['Network segmentation (implied by SOC '
'operations)',
'Access controls',
'Ethical hacking exercises'],
'enhanced_monitoring': ['24/7 real-time attack visualization '
'(via flat-screen TVs)',
'Multi-monitor workstations for '
'analysts'],
'incident_response_plan_activated': ['Real-time monitoring',
'Student-led threat hunting',
'Supervised '
'containment/remediation'],
'network_segmentation': 'Likely (standard SOC practice)',
'remediation_measures': ['Student training on remediation '
'techniques',
'Supervised incident response drills'],
'third_party_assistance': ['Potential future partnerships with '
'businesses/institutions (e.g., '
'Cisco, LyondellBasell, JP Morgan '
'Chase)']},
'stakeholder_advisories': ['Texas state lawmakers (funding request for $4.5M '
'by June 2, 2025).',
'Local businesses (potential partners for incident '
'response services).',
'Houston-area school districts (dual-credit '
'program collaborations).',
'Cybersecurity employers (e.g., Cisco, '
'LyondellBasell, JP Morgan Chase) for '
'internships/job placements.'],
'threat_actor': ['Unspecified external attackers (simulated and real-world)',
'Students acting as defenders under supervision'],
'title': 'San Jacinto College Cybersecurity Training Center Expansion and '
'Real-World Threat Response',
'type': ['Cybersecurity Education Initiative',
'SOC Expansion',
'Incident Response Training']}