Half of Educational Institutions Experienced a Cyberattack in the Past Year

Half of Educational Institutions Experienced a Cyberattack in the Past Year

By Tracey E. Schelmetic

It seems to be steeped into our conventional wisdom that cyber hackers only target high-value institutions, such as banks, insurance companies and large sources of cash and personal customer information. But, increasingly, other types of institutions are becoming targets, perhaps because they don’t have the kind of rigorous security that moneyed organizations have, even though they are heavy users of cloud-based applications. They also have plenty of sensitive personal information that can be leveraged by cyber criminals.

According to new research, nearly half of all educational institutions suffered a cyberattack on their cloud infrastructure within the last 12 months. This is according to cybersecurity company Netwrix, which announced its findings for the education sector from its global 2022 Cloud Data Security Report. The report also found that, for 27 percent of them, incidents in the cloud were associated with unplanned expenses to fix security gaps.

"Educational institutions are keen to broaden their cloud adoption: The sector expects to have 56% of the workload to be in the cloud by the end of 2023, compared to this year's 44 percent," said Dirk Schrader, VP of Security Research at Netwrix. "But, without proper visibility into who has access to sensitive data and when and how that data is being used, IT teams will not be able to proactively mitigate data overexposure and spot suspicious behavior in the cloud."

A large percentage of educational organizations confirmed they store sensitive data in the cloud: the study found that 83 percent of schools do. With educators and students constantly sharing that information, schools tend to be more concerned about insider threats than other industries. Forty-eight percent of respondents in this sector consider cybersecurity risks associated with their own employees to be the biggest ones.

"The educational sector has a good reason to be concerned about insider threats since, 42 percent of them experienced account compromise attacks in 2022 compared to the average of 31 percent from the other industries surveyed,” said Schrader. “Accordingly, their IT teams should pay closer attention to identity and access management by implementing a zero standing privilege approach and enforcing strong password policies.”

While some industries may seem to be more likely targets, the fact is, every business is a target and they all should take extra precautions to safeguard their networks, devices, and data with the latest security strategies and solutions from their technology partners.




Edited by Erik Linask
Get stories like this delivered straight to your inbox. [Free eNews Subscription]

MSPToday Contributor

SHARE THIS ARTICLE
Related Articles

TD SYNNEX Invests in Brazilian Cloud Future with IPsense Acquisition

By: Greg Tavarez    9/18/2024

TD SYNNEX, a global technology distributor, recently announced the acquisition of IPsense Cloud Migration, a cloud solutions provider based in Brazil.

Read More

Embedded AI Security Comes to Lenovo PCs, Powered by SentinelOne

By: Greg Tavarez    9/18/2024

Lenovo, along with SentinelOne, announced a multi-year collaboration to bring AI-powered endpoint security to millions of Lenovo devices across the gl…

Read More

CrowdStrike and 1Password: A Powerful Duo for SMB Cybersecurity

By: Greg Tavarez    9/18/2024

CrowdStrike expanded its partnership with 1Password to simplify security for 150,000 customers, with a focus on SMBs in particular.

Read More

MSP Expo Silver Sponsor Granite to Cut Ribbon on New HQ as it Looks Forward to 'Granite 2.0'

By: Greg Tavarez    9/17/2024

Granite announced that it will officially open its new headquarters on September 20 at 1 Heritage Drive, Quincy, Massachusetts.

Read More

EasyDMARC Secures $20M, Vows to Strengthen Email Security Solutions and Global Channel Partner Ecosystem

By: Alex Passett    9/16/2024

Earlier this morning, email security company EasyDMARC announced that it successfully closed its $20 million Series A funding round, led by Radian Cap…

Read More