Warning: Ransomware Attacks On Virtual Classrooms

Uploaded on 2021-01-25 in JOBS-Training, FREE TO VIEW

There has been a significant increase in ransomware cyber attacks on virtual classrooms. The Coronavirus has changed the way schools operate greatly increasing the use distance learning has increased, which has brought about new cyber security challenges. 

In the US, the FBI is warning students, teachers and parents that cyber criminals and bad actors are looking to exploit online classrooms. In Britain, the National Cyber Security Centre (NCSC) has been investigating an increased number of ransomware attacks affecting education establishments in the UK, including schools, colleges and universities.

Ransomware is a type of malware that prevents you from accessing your systems, or the data held on them, and to get back to normal requires you to pay a criminal in order to get your system back. Typically, the data is encrypted, but it may also be deleted or stolen, or the computer itself may be made inaccessible.More recently, there has been a trend for cyber criminals to also threaten to release sensitive data stolen from the network during the attack, if the ransom is not paid.  There are many high-profile cases where the cyber criminals have followed through with their threats by releasing sensitive data to the public, often via “name and shame” websites on the Dark Net.

In early December, the FBI and the US Cybersecurity and Infrastructure Security Agency (CISA) issued a warning that showed a nearly 30% increase in ransomware attacks against schools. “In August and September, 57% of ransomware incidents reported to the Multi-State Information Sharing and Analysis Center (MS-ISAC) involved K-12 schools, compared to 28% of all reported ransomware incidents from January through July,” the alert said.

FBI Cyber Section Chief Dave Ring told ABC News: “It’s of greater concern now when it comes to K-12 education, because so many more people are plugged into the technology with schooling because of the distance learning situation,” he said. 
“So, things like distributed denial of service attacks, even ransomware and of course, domain spoofing, because parents are interacting so much more with the schools online.”

Attacks on virtual classrooms vary. In Athens, Texas, criminals blocked hundreds of files, and the school district paid a ransom this summer to unlock them. Another common incident that happens, according to Ring, is “zoom-bombing”, a practice where criminals enter an online classroom and post or yell a racist or inflammatory slur.

The move to distance learning lies behind the increasing level of attacks simply because there are more opportunities for it to be disruptive. Many such attacks motivated a desire to steal information and for financial gain by collecting ransoms. Some are just looking to cause chaos. 

The FBI are urging  schools to work together with law enforcement and if something happens to report it to the FBI and local law enforcement, whereas the NCSC recommends that organisations implement a ‘defence in depth’ strategy to defend against malware and ransomware attacks. 

NCSC:       EdTech Magazine:         I-HLS:      Research Gate:

You Might Also Read: 

Security Advice For Using Video Conference Tools

 

« Cyber Security Is The CEO’s Biggest Problem
Biden Twitter Account Starts With Zero Followers »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Montash

Montash

Montash is an award winning, global technology recruitment business, specialising in the acquisitions of high-performing talent across a number of core disciplines including Information Security.

Puppet

Puppet

Puppet is a leader in IT automation. Our software helps DevOps securely automate configuration and management of machines and the software running on them.

Secure Source

Secure Source

Secure Source specialise in search and recruitment for Cyber Security and Security Cleared markets.

Texplained

Texplained

Texplained specializes in security audits of microchips to identify vulnerabilities and protect against invasive cyber attacks.

Mexis

Mexis

ESL Bangladesh

ESL Bangladesh

ESL is the Largest IT Infrastructure & Telecom Service Provider in Bangladesh.

Centro de Gestion de Incidentes Informaticos (CGII) - Bolivia

Centro de Gestion de Incidentes Informaticos (CGII) - Bolivia

CGII is the Computer Incident Management Center of the State of Bolivia.

Cequence Security

Cequence Security

Cequence, a pioneer in API security and bot management, is the only solution that delivers Unified API Protection (UAP), uniting discovery, compliance, and protection.

Dice

Dice

Dice is a leading recruitment platform, helping technology professionals manage their careers and employers connect with highly skilled tech talent in specialist areas including cybersecurity.

Symantec

Symantec

Symantec delivers data-centric hybrid security for the largest, most complex organizations in the world – on devices, in private data centers, and in the cloud.

DNX Ventures

DNX Ventures

Based in Silicon Valley and Tokyo, DNX Ventures is an early stage VC for B2B startups in sectors including Cybersecurity.

OnSecurity

OnSecurity

OnSecurity replaces the overhead of traditional penetration testing firms with a simple online interface, making it easy to book tests as and when needed.

Redpoint Cybersecurity

Redpoint Cybersecurity

Redpoint Cybersecurity is a human-led, technology-enabled managed cybersecurity provider specializing in Digital Forensics, Incident Response and proactive cyberattack prevention.

Hartman Executive Advisors

Hartman Executive Advisors

Hartman Executive Advisors is an unbiased IT and cyber advisory firm uniquely designed to help mid-market executives maximize their IT investments.

Netia

Netia

Netia is a Polish telecommunications company providing a range of business services including network solutions, communications, data centre and cloud, and cybersecurity.

Pango

Pango

Pango is a leading provider of digital consumer security solutions.