Education under siege

Greg Kovich
mayo 19, 2023

A rise in cyberattacks - particularly ransomware - is impacting academic institutions, putting educational goals at risk.

A group of young people

It’s time to sound the alarm. The sheer number and sophistication of cyberattacks on educational institutions around the globe has reached crisis levels. While the recent shift to cloud-based virtual learning brought certain advantages, it has also made it even easier for hackers to further exploit educational environments.1 This is a sector under siege.

Unfortunately, these bold statements are not hyperbole, but rather, a reflection of real-world statistics. For example, between August and September 2021, educational organisations were the target of more than 5.8 million malware attacks globally, or 63 percent of all such attacks.2 Data released in 2022 confirm education and research are still the most targeted industry. The report identifies Australia/New Zealand as the most heavily attacked region, followed by Asia and Europe, with Latin America experiencing the largest increase in weekly cyberattacks.3

In the U.S., the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) came together in 2022 to issue a warning to educational institutions, to let them know they were being disproportionately targeted.4

And it’s not just about fending off the volume of attacks, the increase in scope and scale of cyberattacks, and notably ransomware attacks, are severely impacting institutions ability to function, globally. Take for example:

  • A ransomware attack on Los Angeles Unified School District (LAUSD) in September 2022 prompted an unprecedented shutdown of computer systems that led to ongoing disruptions to email, computer systems and applications.5
  • A cyberattack in the UK in 2021 shutdown email, phone and website communications at 15 schools, bringing online learning to a halt.6
  • A large-scale cyberattack on the Universidad El Bosque in Bogotá, Colombia, in 2021 compromised institutional, academic and financial platforms for three days.7

Students and faculty are losing valuable classroom time and information, putting educational goals at risk. Cyberattacks are also damaging institutions’ reputations and trust, which can lead to lower enrolment and lost revenue. One such institution is 157-year-old Lincoln College in Illinois which was forced to permanently close its doors in May 2022 after a ransomware attack created debilitating financial issues.8

Thinking outside the box

New security strategies are required. Today breaches are being felt around the world, even with traditional approaches to cybersecurity in place. In 2019, the National Cyber Security Centre in the United Kingdom found that 83 percent of 432 schools analysed had been hit by at least one cybersecurity event, even though 98 percent had antivirus solutions in place and 99 percent had a firewall. Tried and true is no longer good enough.

Castle and moat, and defense-in-depth security strategies may have been effective in their day, however, in today’s world where the internet and handheld devices dominate, walls are being breached. The network edge — and the potential for unauthorised network access — can now easily extend well beyond the physical campus perimeter.

Security is an evolving landscape. Institutions willing to take on the challenge of making security a priority can enhance their reputation, educational brand and public image.

Protecting themselves from cyberattacks and avoiding the negative publicity that comes with such events also helps attract and retain students. As well, it puts the institution ahead of the pack in terms of best practices that other institutions can emulate and strengthens education network defenses against cyberattacks.

The good news is, with an effective cybersecurity approach, such as zero trust network access (ZTNA), academic institutions can focus on teaching and learning, rather than technologies and threats. A zero trust strategy — as the name suggests — trusts no user, no device and no application, no matter where it is, on or off campus, or in the cloud. Stay tuned for my next blog where we’ll take a deeper dive on ZTNA and how you can develop your cybersecurity strategy.

Learn more about Alcatel-Lucent Enterprise solutions for the education sector.

1America’s Schools Face Mounting Threats from Cyberattacks. RealClear Education, May 2022.
2America’s Schools Face Mounting Threats from Cyberattacks. RealClear Education, May 2022.
3Education sector seeing highest volumes of cyber attacks. SecurityBrief New Zealand, August 2022.
4America’s Schools Face Mounting Threats from Cyberattacks. RealClear Education, May 2022.
5Los Angeles school district warns of disruption as it battles ongoing ransomware attack. TechCrunch+, September 2022.
6Cyberattack shuts down online learning at 15 UK schools., March 2021.
7The Universidad El Bosque has regained control of its digital platforms., July 2021.
8Ransomware attack shutters 157-year-old Lincoln College. CBS News, May 2022.

Learn more by reading our "Comprehensive cybersecurity on campus" infographic

Greg Kovich

Greg Kovich

Global Sales Lead, sector Educación

Greg Kovich dirige las ventas globales para el sector de Educación de ALE. Greg ha supervisado o creado varias soluciones educativas que incluyen "Los fundamentos de las comunicaciones", un curso sin influencia de proveedores sobre comunicaciones de red digital; "Campus seguro": una solución que une las alertas de emergencia con la colaboración del primer servicio de emergencia y la notificación masiva; "Campus seguro": una solución que permite a los instructores limitar el acceso de la red de estudiantes a determinados sitios; y “Continuidad de la educación en pandemias”: una solución que permite la instrucción en el aula en caso de que la institución cierre debido a una crisis de salud o ambiental.

Se graduó en 1992 por la Universidad de Indiana,y tiene más de 20 años de experiencia en tecnología de la información.

Acerca del autor

Últimos blogs

Security in Comms/Cloud main blog image
Digital Dividends

Seguridad de los datos: proteja sus activos empresariales m…

Una seguridad de los datos robusta, que incluye las mejores prácticas, reduce los riesgos de ciberataques y protege a los clientes, los empleados y los grupos de interés.

Energy and utilities OT and IT convergence blog image
Energía y servicios públicos

Observación de tendencias: convergencia TO-TI en energía y …

La convergencia de las tecnologías operativas y de la información está cambiando la forma en que la energía y los servicios públicos gestionan sus negocios en el futuro.

TAA compliant logo
USA Federal

ALE OmniSwitch es probablemente el conmutador más seguro de…

OmniSwitch es el conmutador de preferencia para ofrecer la seguridad de red de confianza cero que exigen los gobiernos

A woman working from home.
Hybrid Workplace

Las empresas recogen los frutos del trabajo híbrido con UCa…

El puesto de trabajo híbrido con UCaaS le permite beneficiarse de una mejor productividad de los empleados y satisfacción del cliente, un modelo operativo reducido y una gran rentabilidad de la inversión.