Another British University Attacked

Uploaded on 2023-08-03 in FREE TO VIEW

Data belonging to The University of the West of Scotland (UWS) has been put up for auction by an extortion cybergang on the Dark Web after UWS refused to pay a ransom.

This comes just after UWS suffered a major cyber-attack affecting most of its systems. The attack was reported to police on 6 July.

The UWS said it was facing a "cyber incident" earlier in July and police have been investigating and a statement on the site displays a message warning it is “currently down” for maintenance and apologises for any inconvenience.

The university is working with the National Cyber Security Centre (NCSC), Police Scotland and the Scottish Government to resolve the issue.

It is understood that graduations will not be affected, meaning students across UWS’s five campuses can still enjoy their end-of-term celebrations.

The university has campuses in Paisley, Ayr, Dumfries and Blantyre and London.

Initially, no criminal group came forward to claim responsibility, but ransomware group known as Rhysida has claimed it was behind the incident and has seemingly tried to use the stolen data to extort the university.

And now the ransomware gang Rhysida is demanded 20 bitcoin (£450,000) for the confidential data and says it will be sold to the highest bidder.

This attack has affected staff laptops, shut off around half of the university's IT systems, and affected student submissions.

At the time, the university's website was down and an error message apologised for "inconvenience". Some areas of the site have since been restored.

The data advertised on the gang's Deep Web domain includes personal data belonging to staff such as bank details and national insurance numbers as well as internal university documents.

Here are some Key Data Points on the Education Threat Landscape:

SonicWall’s mid-year Threat Report found that between June 2022- June 2023 ransomware attacks on the education sector declined by 38% and it found that Q1 of 2023 had the smallest number of attacks since Q4 2019, but Q2 2023 ransomware has been steadily on the rise.

This is a clear indication that in the resurgence of ransomware education is a prime target.

Other findings include:

  • Cryptojacking Up 31939%
  • Malware attacks on education up 179%
  • Intrusion attempts down 59%

BBC:     The Scottish Sun:     STV:     Tech Monitor:     The National:     Glasgow Times:     Manchester Evening News:     Sonic Wall

 

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

« British Surveillance Laws: Apple Might Withdraw Services
Norway’s Government Ministries Hit by Cyber Attack »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Micro Systemation AB (MSAB)

Micro Systemation AB (MSAB)

MSAB is a leader in the provision of forensically secure tools for the extraction and analysis of data from mobile devices.

Oppida

Oppida

Oppida provides tailored IT security services to help you identify security gaps and assist in finding the most effective remediation.

MailXaminer

MailXaminer

MailXaminer is an advance and powerful email investigation platform that scans digital data, performs analysis, reports on findings and preserves them in a court validated format.

Epati Information Technologies

Epati Information Technologies

ePati Information Technologies is a specialist in information technology and cyber security.

Zighra

Zighra

Zighra is a leading provider of On-Device AI solutions for continuous authentication and fraud detection on mobile and web applications.

Sabat Group

Sabat Group

Sabat Group provide relationship-driven information security & cyber security recruiting services.

Jamf

Jamf

Jamf is the only Apple Enterprise Management solution of scale that remotely connects, manages and protects Apple users, devices and services.

Prima Cyber Solutions (PCS)

Prima Cyber Solutions (PCS)

Prima Cyber Solutions is focused on protecting your business from the massive and devastating impacts that cyber-attacks may cause.

StickmanCyber

StickmanCyber

At StickmanCyber we are on a mission to create a digital world that is safe for everyone - we are your trusted cybersecurity partner.

PlexTrac

PlexTrac

PlexTrac is a cybersecurity reporting and workflow management platform that supercharges security programs, making them more effective, efficient, and proactive.

Virtual Technologies Group (VTG)

Virtual Technologies Group (VTG)

Virtual Technologies Group is a single source, IT product and services provider for SMBs and IT departments, delivering reliable, cost-efficient service, maintenance and support solutions.

BugProve

BugProve

BugProve offers a firmware analysis tool that speeds up security testing processes and supports compliance needs by automating repetitive tasks and detecting 0-day vulnerabilities.

RADICL

RADICL

RADICL's mission is to give SMBs that serve America's Defense Industrial Base (DIB) access to strong, enterprise-grade cyber security protection.

EasySec Solutions

EasySec Solutions

EasySec Solutions provides a cyber-security platform, based on a combination of the zero trust model and the software-defined security management.

Sherweb

Sherweb

Sherweb are a marketplace of leading cloud solutions and value-added services delivered by a team of passionate experts invested in MSP growth.

CPX

CPX

At CPX, we go beyond addressing today’s security risks—we anticipate the challenges of tomorrow.