Cambridge University Medical IT System Hacked

Uploaded on 2024-04-04 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Health & Welfare, TECHNOLOGY--Hackers

The University of Cambridge is ranked as one the world’s top universities, with its medical school and vast research facilities, but recently hundreds of researchers have been unable to access computer systems because of so-called "malicious activity".

Several university departments linked to the Clinical School Computing Service have been not been working for over a month and hundreds of researchers have been unable to uses  computer services or access data, as a result of suspected hacking.

This problem was first discovered five weeks ago in the Clinical School Computing Service, used for high profile medical studies, but it has only recently been made public. So far, the university has said that there was no evidence any data had been taken and the incident was contained. Other Cambridge University IT systems were unaffected and working as normal.

In a statement, the university said relevant authorities had been informed and restoring files and service had begun but "will take some time".

The Clinical School Computing Service is an IT system used by students and institutes based at the Cambridge Biomedical Campus. An email sent to staff following the attack advised that people change their passwords immediately if they receive a notice saying someone else has logged in to their account from another device.

With the aim to protect sensitive data being used by the researchers, the university took some of its IT systems offline, but the institution could not say when normal service would resume. An external investigation took place and found no evidence that data had been taken, according to  university sources

The incident is the latest in a long line of high profile institutions to have its systems targeted. In February, hackers disrupted computer services at the University of  Manchester and In October 2023, the British Library had data stolen and shared on the dark web. It affected operations for months.

BBC     |     Wired     |     Cambridge News     |     Varsity     |     Computing     |     Inside Higher Ed

You Might Also Read: 

Students Should Learn About Phishing:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Nuclear Waste Dump Faces Prosecution For Cyber Security Offences
Spanish Healthcare Service Works On Resilience »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

CloudInsure

CloudInsure

CloudInsure is a Cloud Insurance platform designed to specifically address emerging liabilities within the Cloud environment.

Cobwebs Technologies

Cobwebs Technologies

Cobwebs Technologies provide web intelligence solutions for Law Enforcement (including cybercrime), Intelligence Agencies and Federal Agencies.

Mega

Mega

Mega is a secure cloud data storage provider with browser-based high-performance end-to-end encryption.

TechGuard Security

TechGuard Security

TechGuard Security was founded to address national cyber defense initiatives and US critical infrastructure security.

Desec Security

Desec Security

Desec's training platform allows professionals around of the world to acquire knowledge and practical experience in Information Security.

National Initiative for Cybersecurity Education (NICE) - USA

National Initiative for Cybersecurity Education (NICE) - USA

NICE is a partnership between government, academia, and the private sector focused on cybersecurity education, training, and workforce development.

Pentera Security

Pentera Security

Pentera (formerly Pcysys) is focused on the inside threat. Our automated penetration-testing platform mimics the hacker's attack - automating the discovery of vulnerabilities.

Melius Cyber Security

Melius Cyber Security

Melius Cyber Security has developed a world-leading SaaS platform, Cyber Safe Plus, built around continuous assessment and improvement through vulnerability scanning and penetration testing

Sixteenth Air Force (Air Forces Cyber)

Sixteenth Air Force (Air Forces Cyber)

Air Forces Cyber provides mission integration of Information Warfare at operational and tactical levels, creating dilemmas for adversaries in competition and, if necessary, future conflicts.

TechBase

TechBase

TechBase is an innovation and start-up center offering technology-oriented start-ups optimal conditions for successful business development.

ClearVector

ClearVector

ClearVector is a leading provider of realtime, identity-driven security for the cloud.

Punk Security

Punk Security

Punk Security are specialists in integrating security into DevOps pipelines, enabling rapid and secure development.

Artifice Security

Artifice Security

Artifice Security will demonstrate real-world attacks on your network, web applications, infrastructure, and personnel to expose your hidden security risks.

Red Goat Cyber Security

Red Goat Cyber Security

Red Goat Cyber Security have created excellent, informative and interactive Social Engineering Awareness training which is suitable for all levels of staff.

Fortreum

Fortreum

Fortreum aim to simplify cybersecurity in the marketplace to accelerate your business outcomes.

ProjectDiscovery

ProjectDiscovery

ProjectDiscovery is an open-source, cybersecurity company that builds a range of software for security engineers and developers.