What were the most common cyber attack patterns in higher education in 2023?
In support of Cybersecurity Awareness Month, we are examining reported incidents by industry. The focus of this article will be on the educational services sector.
With a wealth of student, staff and faculty data and countless entry points from student record databases, third-party vendors and web-facing assets, 教育bet9平台游戏行业充满了威胁行为者敲诈高等和低等教育机构以获取经济利益的机会.
In fact, the Verizon 2023 Data Breach Investigations Report (Verizon DBIR)发现,92%的报告事件是出于经济动机,56%是针对个人数据的.
So, 2023年教育bet9平台游戏行业最常见的网络安全攻击方法是什么?
According to the 2023 Verizon DBIR, 在教育bet9平台游戏行业报告的所有事件中,有76%是由系统入侵引起的, miscellaneous errors or social engineering.
System Intrusion and the Educational Services Industry
Earlier this summer, the MOVEit data breach devastated the higher education sector, targeting over 3,000 colleges in the U.S. and stealing at least 38 million individual student records. So, 系统入侵是2023年针对教育bet9平台游戏提供商的头号网络攻击方法,这不足为奇.
系统入侵涉及威胁行为者使用技术手段获得对系统或数据库的未经授权访问的情况. Though it is mainly reported as hacking or deploying malware, this attack method also includes ransomware-related activities, 哪些是教育机构面临的一个日益严重的问题,今年几乎三分之一的教育bet9平台游戏行业违规事件都与它们有关, according to the Verizon DBIR.
Miscellaneous Errors and the Educational Services Industry
Attackers are always up to something new, and, sometimes, an attack doesn’t fall under a specific category.
In the educational services world, miscellaneous errors commonly take the form of mis-delivery, publishing errors and misconfigurations. 当员工通过电子邮件或其他通信渠道将个人身份信息发送给意外的收件人时,就会发生错误传递.
当某人在公共论坛(如网站)上发布机密数据时,就会发生发布错误, either by mistake or for retaliation (someone who was recently fired, has a major disagreement with their manager, etc.). And, last but not least, misconfigurations occur when assets are poorly protected, allowing for unwanted access. 这就是为什么定期更新软件和围绕生命周期管理(访问)制定强有力的安全策略是极其重要的, retention deletion, etc.) of sensitive data.
Social Engineering and the Educational Services Industry
While awareness of social engineering schemes is growing, 许多人仍然成为威胁行为者使用网络钓鱼攻击和借口场景来操纵他们提供敏感信息的受害者. In the context of the educational services industry, threat actors are capitalizing on phishing (via email), Vishing(通过电话)和smishing(通过短信)攻击,以获取学生的敏感和有价值的信息, faculty and staff.
另一种日益增长的属于社会工程范畴的攻击方法是借口场景, 哪一种方法可以有多种,但通常采取心理操纵的形式, impersonation or personalized messages using urgent and convincing language to trick someone into providing access to student databases with bank account data; institutional network information; or student, faculty and staff credentials.
本文是强调行业最常见网络安全事件的系列文章的一部分,基于2023年Verizon DBIR的数据. Additional articles include:
- 保护您的金融和保险数据:2023年要注意的3种常见网络攻击方法
- Protect Your Manufacturers: 3 Common Cyber Attack Methods to Watch Out for in 2023
- 保护您的零售业务:2023年需要注意的3种常见网络攻击方法
- 保护你的病人和他们的数据:2023年要注意的3种常见网络攻击方法
- Cybersecurity Awareness Month Celebrates 20 Years
值得注意的是,引用的数据来自于选择披露事件和数据泄露的组织.
About Cybersecurity Awareness Month
Since 2004, 美国和国会已将10月定为网络安全宣传月,以提高公众和私营部门以及部落社区对网络安全重要性的认识. The year marks the 20th year anniversary of Cybersecurity Awareness Month and this year’s campaign, Secure Our World,重点介绍了保护自己、家人和企业免受网络威胁的四种方法.
Related Resources
- CISA – Secure Our World Homepage
- CISA – 4 Things You Can Do To Keep Yourself Cyber Safe
- Schneider Downs Cybersecurity Resource Library
- Verizon 2023 Data Breach Investigations Report
About Cybersecurity Awareness Month
Since 2004, 美国和国会已将10月定为网络安全宣传月,以提高公众和私营部门以及部落社区对网络安全重要性的认识. The year marks the 20th year anniversary of Cybersecurity Awareness Month and this year’s campaign, Secure Our World,重点介绍了保护自己、家人和企业免受网络威胁的四种方法.
Related Resources
- CISA – Secure Our World Homepage
- CISA – 4 Things You Can Do To Keep Yourself Cyber Safe
- Schneider Downs Cybersecurity Resource Library
- Verizon 2023 Data Breach Investigations Report
Related Resources
- CISA – Secure Our World Homepage
- CISA – 4 Things You Can Do To Keep Yourself Cyber Safe
- Schneider Downs Cybersecurity Resource Library
- Verizon 2023 Data Breach Investigations Report
About Schneider Downs Cybersecurity
施耐德唐斯网络安全实践由提供全面信息技术安全bet9平台游戏的专家组成, including penetration testing, intrusion prevention/detection review, ransomware security, 脆弱性评估和一个健壮的数字取证和事件响应团队. In addition, our Digital Forensics and Incident Response 如果您怀疑或正在经历任何类型的网络事件,团队可以拨打1-800-993-8937,24x7x365.
To learn more, visit our dedicated Cybersecurity page or contact the team at cybersecurity@soundupgrades.net.
Want to be in the know? Subscribe to our bi-weekly newsletter, Focus on Cybersecurity.