A Birmingham college was forced to close this week due to a “major ransomware attack” affecting many of its core IT systems. The nature of the attack still not confirmed. The Cybersecurity expert commented below on the danger of ransomware in light of this incident.
Experts Comments
Submit Your Expert Comments
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.Be part of our growing Information Security Expert Community (1000+), please register here.
South and City College in Birmingham has not confirmed the specifics of the attack yet but yesterday, the FBI issued guidance on an “Increase in PYSA Ransomware Targeting Education Institutions”. The FBI is reporting an increase in PYSA ransomware targeting education institutions in 12 US states and the United Kingdom.
This is a double extortion attack both encrypting and exfiltrating data to extort the victims – threatening to release data on the dark web if ransoms are not met. Attackers
.....Read MoreSouth and City College in Birmingham has not confirmed the specifics of the attack yet but yesterday, the FBI issued guidance on an “Increase in PYSA Ransomware Targeting Education Institutions”. The FBI is reporting an increase in PYSA ransomware targeting education institutions in 12 US states and the United Kingdom.
This is a double extortion attack both encrypting and exfiltrating data to extort the victims – threatening to release data on the dark web if ransoms are not met. Attackers are gaining access through phishing emails or compromising Remote Desktop Protocol (RDP) credentials.
It hasn’t been disclosed if it was PYSA ransomware that hit South and City College in Birmingham but educational institutions should take note. Education is already shouldering enormous demands during the pandemic. Ransomware attacks like this cause significant disruption of days or even weeks and months.
Key actions should be to review RDP and warn users about the heightened threat of phishing. Ideally, anti-spam tools will prevent phishing emails but they will not prevent every targeted email getting through, vigilant users are vital too. They should also review incident response plans and backup and recovery plans.
Read LessLinkedin Message
@Peter Groucutt, Managing Director , provides expert commentary at @Information Security Buzz.
"Key actions should be to review RDP and warn users about the heightened threat of phishing...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/ransomware-attack-on-birmingham-college-and-increased-risk-to-educational-institutions
Facebook Message
@Peter Groucutt, Managing Director , provides expert commentary at @Information Security Buzz.
"Key actions should be to review RDP and warn users about the heightened threat of phishing...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/ransomware-attack-on-birmingham-college-and-increased-risk-to-educational-institutions