Education/Research sector worldwide experienced the highest volumes of attacks every month in 2022 and in 2021.
Check Point Research (CPR) recently published its Cyber Attack Trends: 2022 Mid-Year Report which reported that similar to 2021’s top industry ranking, the first half of 2022 displays significant rises in attacks across all sectors.
Topping them all, Education and Research still leads as the most targeted industry, with an average of 2,297 attacks against organizations every week in the 1H of 2022, showing a 44% increase compared to the 1H of 2021. In today’s report, we shed some more insights to that sector, and present indepth though alarming numbers.
Education/Research sees a 114% increase in the last 2 years
According to CPR, the Education/Research sector experienced the highest volumes of attacks every month in 2022 and in 2021 worldwide.
In July 2022, the Education/Research sector shows more than double the number of weekly cyber-attacks compared to the other industries’ average. This sector had an average of almost 2,000 attacks per organization every week (a 6% increase compared to July last year and 114% increase compared to July two years ago). Such attacks can have devastating consequences like the case of Lincoln College, which after suffering a ransomware attack was the final straw that contributed to their decision to shut down on May 13 2022, after 157 years.
ANZ is the most attacked region in July 2022
When we break down the numbers to education attacks by region in July 2022, we see that ANZ was the most heavily attacked region with 4,176 attacks per organization every week (7% decrease compared to July 2022), followed by Asia with 4,171 attacks (5% increase), and Europe with 1,861 attacks (6% decrease).
Latin America has seen the largest increase in weekly cyberattacks with a 62% increase compared to July 2021.
Omer Dembinsky, Data Group Manager at Check Point Software said “Students, parents and schools are tempting targets for hackers, mainly because of data. There’s lots of it. From gradebooks to online assignments, hackers have far more access points to sensitive information and data. Data is leverage for hackers and can be used to orchestrate ransomware attacks. The COVID-19 pandemic forced a big shift to remote learning. However, the shift to remote learning has increased the potential attack surface of hackers significantly. In other words, the door is much wider for hackers to infiltrate school computer networks. All it takes is for one teacher, student, or parent to click on a phishing email created by a cyber criminal and a ransomware attack could be underway. Education and Research is by far the most attacked industry sector, seeing a 114% increase in the past two years. With back-to-school right around the corner, we are urging students, parents and school to exercise the highest level of cyber security practices. Cover your webcams when not in use. Talk to your kids about phishing. And vet 3rd party applications and more.”
Staying protected against cyber-attacks, tips for schools and students
- Be phishing-aware: be wary of clicking on links that look in any way suspicious and only download content from reliable sources that can be verified. Remember that phishing schemes are a form of social engineering so if you receive an email with an unusual request, check the sender’s details carefully to make sure that you are communicating with colleagues, not cyber criminals.
- Anti-ransomware technology allows you to detect signs of ransomware and uncover running mutations of known and unknown malware families by using behavioral analysis and generic rules
- Passwords matter: It is a good idea to review and strengthen passwords that you use for logging onto remote resources, such as email or work applications.
- Beware of lookalike domains, spelling errors in emails or websites, and unfamiliar email senders.
- Deploy Email Security Solutions– Modern email filtering solutions can protect against malware and other malicious payloads in email messages. Solutions can detect emails that contain malicious links, attachments, spam content, and language that could suggest a phishing attack. Email security solutions automatically block and quarantine suspicious emails and use sandboxing technology to “detonate” emails to check if they contain malicious code.
How Can Check Point Help
Check Point’s Anti-Ransomware technology uses a purpose-built engine that defends against the most sophisticated, evasive zero-day variants of ransomware and safely recovers encrypted data, ensuring business continuity and productivity.
Harmony Endpoint, Check Point’s leading endpoint prevention and response product, includes Anti-Ransomware technology and provides protection to web browsers and endpoints, leveraging Check Point’s industry-leading network protections. Harmony Endpoint delivers complete, real-time threat prevention and remediation across all malware threat vectors.