Heriot Watt University Knocked Offline For A Week

Edinburgh’s Heriot-Watt University has suffered a serious cyber attack taking down IT systems for more than a week. The management has declared a ‘security incident’ involving a malware onslaught had affected a VPN used by staff and students for remote learning but stressed the issue had been ‘contained’.

Internal directories, financial services and student records are also reported to have been affected  in the incident which was first detected on 15th March.

Specialist officers from Police Scotland’s cyber crime unit are investigating, however the university has stressed there is no suggestion of any data leak. The university says it is now “strengthening” its online security protocols to guard against any future attacks. The 200-year-old institution's IT team first referred to the crisis as a "security incident" but now has confirmed that it was a cyber attack.

Status checkers on the higher education facility’s website lists ten systems, including a finance programme linked to their Dubai campus, remain ‘unavailable’.

A ‘resource booker,’ allowing staff and students to secure rooms and sign out equipment is also down alongside a point of sale programme used for on-site canteens. A spokesperson for the university said all users had been safely moved onto alternative systems until the issue can be rectified. They added: “We can confirm that some of our online systems were subject to a cyber-attack last week... The incident was contained immediately and staff and students alerted to allow them to be supported using alternative systems... We are working closely with Police Scotland and specialist advisers to investigate the cause of the incident which will allow us to further strengthen our future security.”

The British National Cyber Security Centre (NCSC) had previously warned universities to be “vigilant” against malicious online threats following an increase in ransomware attacks as in-person learning returned amid the coronavirus pandemic.

The University of the Highlands and Islands was previously forced to shut down its physical and remote campus last year after being targeted by an unknown source. 

The university says it is now “strengthening” its online security protocols to guard against any future attacks.
Heriot-Watt is certainly not the first university to suffer a cyber attack. The University of Hertfordshire was forced to pull the plug on its systems after an incident of it own. Other establishments, including Newcastle University, were also the focus of cyber criminals.

STV:      Edinburgh Live:      Daily Record:        The Register:     Hack Notice:    PiPaNews

You Might Also Read: 

Education Should Focus On Cyber Security:

 

« Multimillion-Dollar Business Email Fraud Gang Arrested
The Metaverse Will Have An Impact On Privacy & Security »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Plan B

Plan B

Plan B is a specialist IT continuity and Disaster Recovery Service provider.

CERT.AZ

CERT.AZ

The national Cyber Security Center of the Republic of Azerbaijan.

Applause

Applause

Applause provides real-world software testing for functionality, usability, accessibility, load, localization and security.

ManagedMethods

ManagedMethods

ManageMethods Cloud Access Monitor is the only Cloud Access Security Broker (CASB) that can be deployed in minutes, with no special training, and with no impact on users or networks.

Centre for Development of Advanced Computing (C-DAC)

Centre for Development of Advanced Computing (C-DAC)

C-DAC is the premier R&D organization of the indian Ministry of Electronics & Information Technology. Areas of research include cyber security.

Simula Research Laboratory

Simula Research Laboratory

Simula Research Laboratory carries out research in the fields of communication systems, scientific computing and software engineering.

QuintessenceLabs

QuintessenceLabs

QuintessenceLabs offers a suite of Data Security technology, products and solutions to secure digital information in-transit, at-rest or in-use.

Aladdin R.D.

Aladdin R.D.

Aladdin R.D. is a leading Russian developer and supplier of authentication devices, products and solutions for information security and confidential data protection.

Internet Solutions (IS)

Internet Solutions (IS)

Internet Solutions (IS) provide ICT solutions in areas including cloud computing, connectivity, data centres, commmunications and security.

Grupo CFI

Grupo CFI

Grupo CFI is the largest Spanish network of data protection and cybersecurity professionals.

Cryptshare

Cryptshare

Cryptshare is a communication solution that enables you to share e-mails and files of any size securely.

APERIO

APERIO

APERIO, the global leader in industrial data integrity, helps its customers drive profitability and sustainability while mitigating risk in their industrial operations.

Horiba Mira

Horiba Mira

Horiba Mira is a global provider of automotive engineering, research and test services including services and solutions for automotive cybersecurity.

Computer Network Defence (CND)

Computer Network Defence (CND)

Computer Network Defence (CND) are a Broad-Spectrum Cyber Security Consultancy and Recruitment Agency.

Inceptus

Inceptus

Inceptus is a next generation Managed Security Service Provider (MSSP). We are dedicated to keeping our customers safe, secure and protected while doing business on the Internet.

PrivacySavvy

PrivacySavvy

PrivacySavvy's mission is to provide you with all the information that you need to ensure that your internet privacy is intact, your devices are secure, and that any time you step online, you’re safe.