Hackers selling research phished from universities on WhatsApp

 Posted by at 10:18 am  Education Sector, Hack, Non-U.S.
Sep 182018
 

Lisa Vaas reports:

Iranian hackers have reportedly breached top British universities – including Oxford and Cambridge – to steal what the Telegraph says are “millions” of papers and academic research documents that they then put up for sale via WhatsApp and websites.

The publication reported on Friday that much of the subject matter is bland, but some of the papers covered topics including nuclear development and computer encryption.

Whoever stole the papers is reportedly selling them on Farsi language websites in addition to the end-to-end encrypted WhatsApp messaging app, where they’re going for as little as £2 (USD $2.63).

Read more on Naked Security.

After one-third of North Dakota schools get hacked by foreign entities, state superintendent addresses attack with cyber security standards

 Posted by at 8:08 am  Commentaries and Analyses, Education Sector, Of Note
Sep 172018
 

Austin Howard reports:

The North Dakota Information Technology Department said there were malware attacks on one-third of North Dakota schools in February 2018. The hackers behind the attacks were from different international locations including North Korea and the malware was downloaded from multiple access points.

According to ITD’s Director of Security Sean Wiese, hackers used DoublePulsar malware that easily gives “bad actors” the ability to infiltrate other systems.

Wiese says this malware can infect a computer if a user simply clicks on something they weren’t supposed to click on.

Read more on InfoRum.

IE: UCD Students’ Union uncovers ‘major data breach’ in Student Leap Cards

 Posted by at 8:38 am  Education Sector, Non-U.S.
Sep 152018
 

This news story appeared on August 30, but I am first seeing it now.  Jack Quann reported:

The Students’ Union at University College Dublin (UCD) has suspended selling Student Leap Cards, after they say they uncovered that personal information was at risk.

The information used in the student version of the card is different to regular cards.

The union claims the information it takes is in breach of General Data Protection Regulation (GDPR).

Personal information available to Student Leap Card agents includes a photo, address, mobile phone number and e-mail.

Read more on NewsTalk.

Monroe County School District system attacked with GandCrab ransomware

 Posted by at 8:49 am  Education Sector, Malware, U.S.
Sep 142018
 

Gwen Filosa reports:

The Monroe County School District has been forced to shut down its computer system for nearly three days due to a cyberattack.

An employee working on payroll work Sunday noticed some problems with the computer system and put in a request with the district’s IT department, administrators said. The tech team contacted the district’s internet security provider, Symantec, which advised securing the system.

“They brought it all down on Sunday,” said Pat Lefere, executive director of operations and planning for the district.

The culprit was ransomware called “GandCrab.”

Read more on Miami Herald.

 Older Entries