Heriot Watt University Knocked Offline For A Week

Uploaded on 2022-04-01 in NEWS-Cybersecurity News, JOBS-Training, FREE TO VIEW

Edinburgh’s Heriot-Watt University has suffered a serious cyber attack taking down IT systems for more than a week. The management has declared a ‘security incident’ involving a malware onslaught had affected a VPN used by staff and students for remote learning but stressed the issue had been ‘contained’.

Internal directories, financial services and student records are also reported to have been affected  in the incident which was first detected on 15th March.

Specialist officers from Police Scotland’s cyber crime unit are investigating, however the university has stressed there is no suggestion of any data leak. The university says it is now “strengthening” its online security protocols to guard against any future attacks. The 200-year-old institution's IT team first referred to the crisis as a "security incident" but now has confirmed that it was a cyber attack.

Status checkers on the higher education facility’s website lists ten systems, including a finance programme linked to their Dubai campus, remain ‘unavailable’.

A ‘resource booker,’ allowing staff and students to secure rooms and sign out equipment is also down alongside a point of sale programme used for on-site canteens. A spokesperson for the university said all users had been safely moved onto alternative systems until the issue can be rectified. They added: “We can confirm that some of our online systems were subject to a cyber-attack last week... The incident was contained immediately and staff and students alerted to allow them to be supported using alternative systems... We are working closely with Police Scotland and specialist advisers to investigate the cause of the incident which will allow us to further strengthen our future security.”

The British National Cyber Security Centre (NCSC) had previously warned universities to be “vigilant” against malicious online threats following an increase in ransomware attacks as in-person learning returned amid the coronavirus pandemic.

The University of the Highlands and Islands was previously forced to shut down its physical and remote campus last year after being targeted by an unknown source. 

The university says it is now “strengthening” its online security protocols to guard against any future attacks.
Heriot-Watt is certainly not the first university to suffer a cyber attack. The University of Hertfordshire was forced to pull the plug on its systems after an incident of it own. Other establishments, including Newcastle University, were also the focus of cyber criminals.

STV:      Edinburgh Live:      Daily Record:        The Register:     Hack Notice:    PiPaNews

You Might Also Read: 

Education Should Focus On Cyber Security:

 

« Multimillion-Dollar Business Email Fraud Gang Arrested
The Metaverse Will Have An Impact On Privacy & Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

CERT.BY

CERT.BY

The National Computer Emergency Response Team of the Republic of Belarus.

Telia Cygate

Telia Cygate

Cygate are specialists in information security, data networks, and data centre and cloud technologies.

Netresec

Netresec

Netresec is an independent software vendor with focus on the network security field. We specialize in software for network forensics and analysis of network traffic.

SecurityHQ

SecurityHQ

SecurityHQ (formerly known as Si Consult) is a Global Managed Security Service Provider (MSSP) that monitors networks 24/7, to ensure complete visibility and protection against your cyber threats.

Cansure

Cansure

Cansure is a leading insurance provider in Canada offering a broad range of property & casualty insurance solutions including Cyber & Data Breach insurance.

SevenShift

SevenShift

SevenShift is a security consulting firm with a wealth of experience in the worlds of Cybersecurity and Internet of Things (IoT).

Cyber NYC

Cyber NYC

Cyber NYC is a suite of strategic investments to grow New York City’s cybersecurity workforce, help companies drive innovation, and build networks and community spaces.

MISP Project

MISP Project

The MISP threat sharing platform is a free and open source software helping information sharing of threat intelligence including cyber security indicators.

Space ISAC

Space ISAC

Space ISAC is the only all-threats security information source for the public and private space sector.

ProWriters

ProWriters

As a leading cyber insurance company, ProWriters offers flexible Cyber Liability Insurance coverage designed to cover privacy, data, and network exposures.

Injazat

Injazat

Injazat Data Systems is an industry recognized market leader in the Gulf region for Information Technology, Data Center and Managed Services.

Soffid

Soffid

Soffid provides full Single-Sign-On experience and full Identity and Access Management features by policy-based centralised orchestration of user identities.

Urbane Security

Urbane Security

Urbane Security is a premier information security consultancy empowering the Fortune 500, small and medium enterprise, and high-tech startups.

Phished

Phished

Phished is an AI-driven platform that focuses on the human side of cybersecurity. By combining fully automated training software with personalised, realistic simulations of cyberattacks.

Rhymetec

Rhymetec

Rhymetec are an industry leader in cloud security, providing innovative cybersecurity and data privacy services to the modern-day SaaS business.

Intracis

Intracis

Intracis is a 'Made in India' cyber incident management solution aimed at ‘Making Security Simple’ by simplifying cyber incident management for CERTS and CSIRTS.