New data from Verizon makes it clear that the Education sector is under attack, but also breaks down which threat actions and patterns are used most.
We’ve seen Education institutions become a major focus for cybercriminals and entities like the New York State Education Department and the FBI have issued warnings.
To me, it feels like threat actors are thinking “well, if we take down a school district or a university, it’s disruptive enough to get a ransom paid, but no one really gets hurt.”
In the latest Verizon Data Breach Investigations Report, we find that the Education sector experienced over 1500 confirmed data breaches last year – the highest number of any industry covered in Verizon’s report.
What’s interesting is how Verizon dissects the attack patterns, actions and assets targeted. According to the report:
- Social Engineering and System Intrusion were the top two breach patterns. Social Engineering attacks use pretexting, phishing as threat actions, while 70% of System Intrusion attacks involve ransomware
- Servers were the number one asset targeted in attacks, with Social, Malware, and Hacking top the list of breach actions. According to the report, ransomware and backdoor malware are the most common action varieties. The use of Social as a breach action makes it clear that the use of social engineering via email and text is commonly used as part of attacks targeting specific servers in Education institutions
The Verizon data feels like it confirms something we’ve been writing about for years – they are, and will continue to be, a target. One aspect of defense needed is the implementation of security awareness training so that any social engineering-based aspects of an attack can be easily spotted by faculty and staff, helping to avoid an attack from being successful.
KnowBe4 empowers your workforce to make smarter security decisions every day. Over 65,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.
Here's how it works:
