Connect with us

Hi, what are you looking for?

Tech & Science

The threat hanging over back to school: Howard University cyberattack

The University’s Enterprise Technology Services (ETS) detected “unusual activity” on the University’s network.

A teacher using laptop as part of a workshop for school children. Image by Astrid Lomholt. (CC BY-SA 3.0)
A teacher using laptop as part of a workshop for school children. Image by Astrid Lomholt. (CC BY-SA 3.0)

In September 2021, Howard University revealed they were they victim of a ransomware attack that resulted in cancelled classes. This is the latest in a series of cyberattacks launched upon education establishments.

In terms of the form of attack, ransomware attacks represent the number one cybersecurity threat for universities in the U.S. For example, an analysis of ransomware campaigns against higher education, undertaken by ZDNet, has found that attacks against universities during 2020 were up 100 percent compared to 2019.

In addition, the average ransom demand from this form of attack now stands at $447,000 (in exchange for the decryption key). Most of the attacks occurred in the most populous states of the U.S., like Texas, New York, California and Louisiana and that more than 1,740 schools and colleges were impacted by a ransomware attack in 2020.

With the Howard incident, the University’s Enterprise Technology Services (ETS) detected “unusual activity” on the University’s network, as TechCrunch reports. This led authorities to intentionally shut down the information technology systems in order open up an investigate. This led to a disruption of teaching.

To provide analysis of the incident, Ric Longenecker, CISO at Open Systems, tells Digital Journal the issue presents a growing concern.

Longenecker sets the context as: “Howard University became the latest victim of a ransomware attack. This should come as no surprise, as ransomware attacks are the No. 1 cybersecurity threat for universities.”

There is a reason for this focus upon education, says Longenecker: “These organizations are particularly attractive to bad actors given the wealth of data that schools have – including medical information, social security numbers, addresses, and banking and credit card information.”

With the recent incident, Longenecker acknowledges: “Howard University has done a great job with its response, this still highlights the need for higher education institutions to step up their cybersecurity efforts.”

There is more to do, and Longenecker makes some recommendations: “These organizations can overcome, prevent and combat cyberattacks by leveraging a managed detection and response (MDR) provider. An experienced MDR provider can identify threats and contain them quickly and efficiently before they spread and impact students, faculty and parents.”

Other useful measures include undertaking encryption of all sensitive data, including data both in flight and at rest, which will make it impossible for cybercriminals to read or expose that data in any intelligible form. It is useful to have in place an immutable backup copy of their data.

Avatar photo
Written By

Dr. Tim Sandle is Digital Journal's Editor-at-Large for science news. Tim specializes in science, technology, environmental, business, and health journalism. He is additionally a practising microbiologist; and an author. He is also interested in history, politics and current affairs.

You may also like:

Entertainment

Emmy-nominated actor Justin Hartley is chasing ghosts in the new episode titled "Aurora" on '"Tracker" on CBS.

Social Media

Do you really need laws to tell you to shut this mess down?

Business

The electric car maker, which enjoyed scorching growth for most of 2022 and 2023, has experienced setbacks.

World

Former US President Donald Trump speaks to the press in New York City - Copyright POOL/AFP Curtis MeansDonald Trump met with former Japanese prime...