Another British University Attacked

Uploaded on 2023-08-03 in FREE TO VIEW

Data belonging to The University of the West of Scotland (UWS) has been put up for auction by an extortion cybergang on the Dark Web after UWS refused to pay a ransom.

This comes just after UWS suffered a major cyber-attack affecting most of its systems. The attack was reported to police on 6 July.

The UWS said it was facing a "cyber incident" earlier in July and police have been investigating and a statement on the site displays a message warning it is “currently down” for maintenance and apologises for any inconvenience.

The university is working with the National Cyber Security Centre (NCSC), Police Scotland and the Scottish Government to resolve the issue.

It is understood that graduations will not be affected, meaning students across UWS’s five campuses can still enjoy their end-of-term celebrations.

The university has campuses in Paisley, Ayr, Dumfries and Blantyre and London.

Initially, no criminal group came forward to claim responsibility, but ransomware group known as Rhysida has claimed it was behind the incident and has seemingly tried to use the stolen data to extort the university.

And now the ransomware gang Rhysida is demanded 20 bitcoin (£450,000) for the confidential data and says it will be sold to the highest bidder.

This attack has affected staff laptops, shut off around half of the university's IT systems, and affected student submissions.

At the time, the university's website was down and an error message apologised for "inconvenience". Some areas of the site have since been restored.

The data advertised on the gang's Deep Web domain includes personal data belonging to staff such as bank details and national insurance numbers as well as internal university documents.

Here are some Key Data Points on the Education Threat Landscape:

SonicWall’s mid-year Threat Report found that between June 2022- June 2023 ransomware attacks on the education sector declined by 38% and it found that Q1 of 2023 had the smallest number of attacks since Q4 2019, but Q2 2023 ransomware has been steadily on the rise.

This is a clear indication that in the resurgence of ransomware education is a prime target.

Other findings include:

  • Cryptojacking Up 31939%
  • Malware attacks on education up 179%
  • Intrusion attempts down 59%

BBC:     The Scottish Sun:     STV:     Tech Monitor:     The National:     Glasgow Times:     Manchester Evening News:     Sonic Wall

 

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

« British Surveillance Laws: Apple Might Withdraw Services
Norway’s Government Ministries Hit by Cyber Attack »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Kenna Security

Kenna Security

Kenna Security is a risk intelligence & vulnerability management platform that helps prioritize and remediate vulnerabilities.

World Wide Technology (WWT)

World Wide Technology (WWT)

WWT is a technology solution provider in the areas of big data, collaboration, computing and cloud, mobility, networking, security and storage.

Egis Technology

Egis Technology

Egis specializes in the IC design, research and development, and the testing and sales of capacitive fingerprint sensor.

Elliptic

Elliptic

Elliptic solve the crucial problem of identity in cryptocurrencies, with the sole purpose of combating suspicious and criminal activity.

Forum of Incident Response & Security Teams (FIRST)

Forum of Incident Response & Security Teams (FIRST)

FIRST is the global Forum of Incident Response and Security Teams.

Internet Infrastructure Investigation

Internet Infrastructure Investigation

Internet Infrastructure Investigation offers a bespoke Internet Governance Solution to your brands online infringement problems.

Dcode

Dcode

Dcode connects the tech industry and government to drive commercial innovation in the federal market.

Cyber Polygon

Cyber Polygon

Cyber Polygon is an annual online exercise which connects various global organisations to train their competencies and exchange best practices.

CloudSEK

CloudSEK

CloudSEK has set its sights on building the world’s fastest and most reliable AI technology, that identifies and resolves digital threats.

Wavex Technology

Wavex Technology

Wavex Technology is an award winning IT Services firm offering clients a secure and fully managed IT service.

Huntington Ingalls Industries (HII)

Huntington Ingalls Industries (HII)

Huntington Ingalls Industries is America’s largest military shipbuilding company and a provider of professional services to partners in government and industry.

XioGuard

XioGuard

XioGuard is a managed security service for 360-degree cybersecurity coverage, protecting the entire attack surface, increasing performance, reducing cost, and simplifying operations.

Slamm Technologies

Slamm Technologies

Slamm Technologies is a trusted IT firm that offers Cyber Security Support, Corporate IT Solutions and Professional IT Training courses with international certification.

Quod Orbis

Quod Orbis

Quod Orbis are a fast-growing, innovative company providing market-leading expertise in cyber security and Continuous Controls Monitoring (CCM).

Datapac

Datapac

Datapac is one of Ireland’s largest and most successful ICT solutions and services providers. We have been at the forefront of technology innovation in Ireland for the past three decades.

c0c0n

c0c0n

c0c0n is the longest running conferences in the area of Information Security and Hacking, in India.