Education has become one of the most targeted sectors by cybercriminals, ranking as the third main target worldwide. With an average of 2,507 cyberattack attempts per week, educational institutions, from schools to universities, face increasingly complex threats ranging from phishing and malware to the vulnerability of devices connected to the network. This is revealed in the latest report on cybersecurityCybersecurity solutions are essential in the… from Microsoft.
The education system, especially universities, handles a large amount of sensitive data, including financial information and health records. Furthermore, many educational institutions operate as Internet Service Providers (ISPs) and manage diverse technological infrastructures, making protection even more challenging. This combination makes the education sector an ideal target for cyber attackers, who have found an opportunity to exploit its vulnerabilities.
A unique and valuable environment for cybercriminals
Unlike large companies, educational institutions have a diverse user base, ranging from six-year-old children in K-12 environments to researchers and academics. This user diversity, along with the open nature of school and university networks, creates a breeding ground for cyber threats.
Remote learning and virtual classes have exponentially increased the use of unmanaged personal devices, multiplying the digital footprint of these institutions and, in turn, the entry points for potential attacks. According to the Microsoft report, the United States is the country most affected by cyberattacks in the education sector, although threats are also significant in the United Kingdom. In fact, 43% of higher education institutions in the UK reported experiencing breaches or attacks at least once a week, according to UK government data.
The hidden danger of QR codes
One of the emerging attack vectors is the malicious use of QR codes, a technology widely used on campuses and schools to facilitate information distribution. These codes, which can be found in emails, posters, or financial aid forms, are the perfect vehicle for phishing or malware downloads. The Federal Trade Commission of the United States issued a recent alert about the increase in malicious QR codes designed to steal login credentials or install harmful software on victims’ devices.
According to Microsoft, more than 15,000 messages with malicious QR codes are sent daily to the education sector. This tactic takes advantage of users’ habit of quickly scanning these codes without verifying their authenticity, making it easier for attackers to compromise devices, especially those without security protection.
Universities: centers of knowledge, targets of espionage
Universities are targets not only due to the diversity of users but also because of their collaborative nature and role in scientific innovation. Researchers and academics often handle extremely valuable information, including sensitive intellectual property and research projects funded by governments and private entities.
State actors have focused their interest on these institutions, using everything from espionage attacks to social engineering to access high-value research. Groups like the Mabna Institute from Iran have hacked universities in the United States and 21 other countries, stealing credentials and selling access to university libraries.
Artificial intelligence: a double-edged tool
While artificial intelligence (AI) promises to revolutionize education, it is also being used for malicious purposes. Microsoft has detected that state actors, such as groups linked to North Korea, use AI to generate fake content in social engineering attacks. However, AI can also be a powerful ally in cyber defense. AI-based tools can accelerate the response to cyberattacks, helping to identify and mitigate threats in real time.
Defending the future of education
To combat this growing wave of cyber threats, educational institutions must prioritize strong cybersecurity measures. Microsoft recommends educating both students and staff on good security practices, implementing multifactor authentication, and adopting zero trust models to limit unauthorized access. Additionally, institutions should centralize their technological infrastructure to facilitate monitoring and detection of suspicious activities.
In an increasingly digital world, education is at the forefront of a cyber battle that demands robust solutions and cooperation between governments, technology companies, and educational institutions themselves. Only in this way can data, infrastructure, and ultimately the future of knowledge be protected.
source: Microsoft and Education 2.0