Canadian universities face ransomware attacks, data breaches raise concerns. Education sector vulnerability highlighted. Impact analyzed. (IT World Canada)
The LockBit ransomware group has initiated the release of data purportedly taken from a Quebec university last month. The affected institution, the University of Sherbrooke, serves a significant community comprising approximately 31,000 students and 8,200 staff members in the city of Sherbrooke, situated about a two-hour drive east of Montreal.
When approached for comment on LockBit's actions, Jocelyne Faucher, the university's Secretary General, referred to the institution's statement from December 7, acknowledging the compromise of "certain data from one research laboratory." Despite this incident, the university asserted in its statement that it has not disrupted its operations, while an ongoing investigation into the matter continues.
Reports from Radio Canada indicated that the university had not previously disclosed a ransomware attack last month. However, the specifics of whether the compromised data contained personal information or intellectual property remain undisclosed by the university.
Cybersecurity threats targeting the education sector have various motives. These include the belief that public schools might succumb to pressure to pay for access to stolen data concerning students. Similarly, hackers expect post-secondary institutions to face demands from students for the restitution of stolen personal and research-related information.
Sophos' recent annual ransomware report highlighted that the education sector was the most susceptible to ransomware attacks in 2022. Approximately eight percent of educational institutions surveyed reported being impacted. The report noted that the education sector often grapples with fewer resources and technological advancements compared to other industries, making it a prime target for cyber adversaries exploiting these vulnerabilities.
Earlier instances of cyber attacks on Canadian universities include the University of Waterloo in Ontario, which thwarted a ransomware attack with the assistance of the RCMP. The incident compromised the university's on-premises email server, affecting a limited number of users who were subsequently required to reset their login credentials.
Another recent attack in December targeted Memorial University's Grenfell campus in Corner Brook, NL. This attack led to the temporary shutdown of IT services at the Marine Institute, necessitating a delay in the start of the new semester. The university mandated that all faculty, staff, and students alter their login passwords, foreseeing lingering repercussions for several weeks. Efforts to mitigate the impact involve providing laptops to faculty and staff while ensuring the security of internet and Wi-Fi access points.
Similar cyber incidents also affected American educational institutions, including DePauw University in Indiana, which faced an IT shutdown in November, and Stanford University in California, attacked by a ransomware gang in October.
