The Leading News & Information Service For The Facilities, Workplace & Built Environment Community

Ransomware - Universities and Students Under Attack

26 August 2016 | Updated 01 January 1970
 

63% of British universities who responded to a Freedom of Information request made by SentinelOne, admit to being the target of a ransomware attack. Over half, 56%, suffered a ransomware attack in the past year. One university admitted that it had suffered a total of 21 separate attacks throughout the year.

The FOI requests, were carried out by SentinelOne, in July 2016 to establish if ransomware was a significant problem in academic institutions.

Of the 71 universities contacted, thirteen refused to answer because their response could damage their commercial interests. While only Oxford and Kings College London admitted to not having any antivirus (AV) software, the majority of ‘protected’ universities suffered ransomware attacks despite investing in AV solutions. No universities confessed to paying a ransom. However, the value of ransoms demanded to decrypt the data ranged between £77 and £2,299.00 (5 bitcoins). Only Brunel University had ever contacted the police in relation to a ransomware attack, most universities preferring instead to deal with the situation internally.

It is clear that public authorities are increasingly primary targets for ransomware attacks. Earlier this year another FOI request revealed that 30% of UK councils were the victims of ransomware.

On an international scale universities have also been targeted, with the University of Calgary admitting to paying a $16,000 ransom. Another prime target for ransomware has been US hospitals – the Hollywood Presbyterian Medical Center in Los Angeles was the most notorious victim, admitting to paying a $17,000 ransom.

“The fact that all but one of those suffering a ransomware attack had an anti-malware solution installed, confirms the abject failure of traditional solutions to protect against the new, virulent strains of ransomware. In one particular case, Bournemouth University found itself to be the most targeted institution, with a deeply concerning 21 attacks in the last year,” said Jeremiah Grossman, Chief of Security Strategy at SentinelOne. “The fact that 65% of those universities suffering an attack were the victim of repeated attacks, where no ransom was [allegedly] paid, may prompt us to question the motives of the adversary as more than purely financial.”

Gianluca Stinghini, Lecturer and Assistant Professor, Department of Computer Science, and Security Crime Science, University College London, said: “These findings shine a light on the growing ransomware threat and the fact that universities are seen as potentially lucrative targets. The high proportion of attacks and the fact that many have been hit multiple times, could be down to a number of factors. They hold sensitive data on staff and students which makes them attractive in the eyes of cyber criminals. From the evidence provided in this study, it appears that cyber criminals ask for more money in attacks against universities than they do when they target the general public. E-mail addresses for staff are often in the public domain which means that potentially the entire staff could be targeted at once, increasing the chance for successful infections. It could also be that they’re motivated by instances of other institutions reportedly paying out the ransom demands. All these factors combined underline the need for vigilance in the face of this increasing threat, from opening email attachments, to updating systems and back-ups for data.”

Picture: Universities and students are being hit with ransomware demands

Article written by Brian Shillibeer | Published 26 August 2016

Share


Related Tags


Related Articles

NHS IT Services Supplier Victim of Ransomware Attack

It has been confirmed that a ransomware attack is causing a major outage for NHS IT systems. Services affected include software used by NHS 111 and other patient notes...

 Read Full Article
What Can The FM Sector Learn From The ISS Malware Attack?

After breaking the news of the ISS World malware crisis, ThisWeekinFM speaks to the industry experts, to identify how FM companies can better manage cybercrime...

 Read Full Article
More Global FM Firms Hit By Cyber Attacks

EMCOR Group and Bouyges are the latest FM companies targeted by malicious software attacks.  The website of EMCOR Group, the global providers of facility...

 Read Full Article
Anatomy Of A Cyber Attack

The cyber attack on the global heavy manufacturing sites of Norsk Hydro saw the aluminium producer lose over £25.5 million in under a week. Here we detail three...

 Read Full Article
Global Ali Producer Shut Down By Cyber Hack

A major global aluminium producer with multiple sites, including furnaces, has been the victim of a major and malicious cybersecurity attack. A lack of ability to connect...

 Read Full Article
Hackers' Paradise - Easy Access...And Ransoms Paid

One report says on average, one third of business decision makers would pay hackers' ransom demands; while another - DNS Threat Report -  shows European...

 Read Full Article
WannaCry - Don't...Just Learn the Lessons

Earlier this year, ransomware took centre stage in one of the largest outbreaks ever, hitting a huge number of companies across the globe, writes Ravid Circus. There...

 Read Full Article
Watch What Staff Click - Ransomware Warning

Colin Tankard says the dust from the ransomware which hit major organisations around the world on Friday 12 may seem to have settled but vulnerabilities still exist in...

 Read Full Article
Phishing Docs and the Digital Signature?

Protecting digital documents and being able to verify that the sender of a file is, in fact, who they say they are, is fast becoming a major concern for many...

 Read Full Article
One in Ten Brits are Victims of Cyber Fraud

Research of over 10,000 consumers has revealed that one in ten people have been a victim of cyber fraud whilst not protected by cybersecurity software. Meanwhile, more...

 Read Full Article