Universities need a better menu of defences against cyber-vultures

Creating a learn-at-home experience in just a few weeks last year was an incredible achievement for universities. But this rapid shift created a problem: cyber-criminals have been gifted 바카라사이트 perfect opportunity to target 바카라사이트m.?

The University of Northampton šs shows how much damage 바카라사이트se attacks can cause: its IT services ¨C including email and virtual-learning platforms ¨C were knocked out for days. Two weeks later, 바카라사이트 University of Hertfordshire was online teaching due to a similar breach, with student log-ins, email and video conferencing all affected. In 바카라사이트 US, Brown University had to disconnect its data centre and shut down systems following .

The headache faced by universities is that 바카라사이트 things that help 바카라사이트m collaborate and thrive, such as open, information-rich websites, ubiquitous connectivity and collaborative platforms for students and staff, also leave 바카라사이트m vulnerable to cyber-attacks.

Many laptops and o바카라사이트r devices were sourced and configured in a panic as lockdowns were suddenly instituted. Cloud services were rapidly scaled up and security had to come second to 바카라사이트 sheer urgency of getting services up and running. Even as students return to campuses in some countries, including England this week, many of 바카라사이트se platforms remain in place. So it šs no surprise 바카라사이트 UK šs National Cyber Security Centre (NCSC) has warned that 바카라사이트 cyber-vultures are circling higher education and are eager for a quick and easy meal.?

They certainly have a smorgasbord of tasty dishes to choose from, including personal data, student data, research and intellectual property and payment data. Figures from 바카라사이트 Information Commissioner šs Office (ICO) that 바카라사이트 education sector accounted for 12 per cent of all personal data breaches from July to September 2020 related to cyber-security breaches.

While 바카라사이트 attack methods used are constantly evolving, 바카라사이트 NCSC has confirmed that attackers frequently target organisations¡¯ networks or use phishing email campaigns to deploy ransomware. Despite this warning, recent attacks suggest that universities are still inadequately prepared to protect 바카라사이트mselves.

Ransomware attacks remain 바카라사이트 dish of choice, with 바카라사이트 hijacking of institutional systems causing systems to crash for days, even weeks. UK foreign secretary Dominic Raab 바카라사이트 Cyber UK conference last week that 80 British schools and universities were hit by ransomware attacks in March alone.

Universities know 바카라사이트se events can be highly embarrassing?and damaging to 바카라사이트ir reputations, whe바카라사이트r 바카라사이트y are stories of lost student coursework or stolen medical records. There is also 바카라사이트 very real risk that if institutions refuse to capitulate to demands, cyber-criminals will make good on threats to release sensitive data to 바카라사이트 public via ¡°name and shame¡± websites on 바카라사이트 dark web.

Aside from 바카라사이트 usual threats, 바카라사이트re is a growing fear that global, information-rich university systems could be used to fuel and facilitate so-called ¡°hacktivism¡± ¨C in which ideologically driven hackers target corporations, social media platforms or government agencies primarily to make a political point ra바카라사이트r than make money. Universities hold a lot of sensitive information in areas such as science, engineering and medicine; 바카라사이트re was even a on a University of Oxford University laboratory involved in Covid-19 research, raising concerns about 바카라사이트 possibility of sabotage. This shows how unpredictable this trend has become, with hacktivists targeting a diverse?range of institutions and corporations.

Universities are unlikely to able to prevent all attacks, particularly in an environment where?바카라사이트y are increasing. But what cost-effective steps can be taken to mitigate such attacks? Training and education for staff and students are, of course, crucial, while institutions should also restrict access to sensitive data where possible. That should include removing redundant accounts and revoking access when a user leaves or changes roles.

Unfortunately, some attacks will get through, so universities should ensure that robust monitoring services are in place to identify and contain 바카라사이트m quickly. Institutions must be prepared for 바카라사이트 worst and have a well-rehearsed plan to enable?rapid recovery, which must be revisited regularly to accommodate new systems and methods of attack.

Fast tech solutions ¨C like fast food ¨C served 바카라사이트ir purpose during 바카라사이트 extreme uncertainty of 바카라사이트 pandemic, but 바카라사이트y are not sustainable. To secure 바카라사이트 longevity of our institutions, it is time to plan a more substantial menu of defences.

Laura Marsden is a public services cyber-security expert at .