3 in 4 Education Institutions Have Identified a Cyber Attack on Their Infrastructure in the Past Year

Seventy-seven percent of institutions across K-12 and higher education have uncovered a cyber attack on their infrastructure within the past 12 months, according to a new survey from cybersecurity company Netwrix. That represents a significant increase from 2023, when 69% of education organizations reported the same.

For its 2024 Hybrid Security Trends Report, Netwrix surveyed 1,309 IT and security professionals from a variety of industry sectors in 104 countries, to find out about their IT infrastructure, security challenges, and more. Education-specific survey results were released in a separate report, "Additional Findings for the Education Sector."

The most common attack vectors in education were phishing, user account compromise, and ransomware or other malware, the report found. Of the institutions that experienced a security incident, 47% reported facing unplanned expenses to fix security gaps, while 42% said they experienced no impact. Other cyber attack consequences included compliance fines (cited by 14% of respondents), change in senior leadership (11%), loss of competitive edge (11%), and lawsuits (10%).

Respondents were also asked about their biggest data security challenges. Fifty-one percent pointed to a lack of budget for data security initiatives; 47% said mistakes or negligence by business users; and 45% said an understaffed IT/security team.

"While educational institutions may have the same complexity as large organizations, they typically lack matching budgets and resources to deal with their dynamic environments," commented Ilia Sotnikov, security strategist at Netwrix, in the report. "It is crucial for the IT security teams in the education sector to have processes and tools in place to govern the identities, audit their activity, and monitor for any abnormal or malicious behavior."

The full report is available on the Netwrix site here.

About the Author

Rhea Kelly is editor in chief for Campus Technology, THE Journal, and Spaces4Learning. She can be reached at [email protected].

Featured

  • AI face emerging from data

    The Shadow AI Threat: Why Higher Ed Must Wake Up to Risks Before the Headlines Hit

    The most concerning issue with artificial intelligence may not be in the tools themselves, but in how quietly they're being used without oversight.

  • young man in a denim jacket scans his phone at a card reader outside a modern glass building

    Colleges Roll Out Mobile Credential Technology

    Allegion US has announced a partnership with Florida Institute of Technology (FIT) and Denison College, in conjunction with Transact + CBORD, to install mobile credential technologies campuswide. Implementing Mobile Student ID into Apple Wallet and Google Wallet will allow students access to campus facilities, amenities, and residence halls using just their phones.

  • cloud with binary code and technology imagery

    Report: Hybrid and AI Expansion Outpacing Cloud Security

    A new survey from the Cloud Security Alliance (CSA) and Tenable finds that rapid adoption of hybrid, multi-cloud and AI systems is outpacing the security measures meant to protect them, leaving organizations exposed to preventable breaches and identity-related risks.

  • hooded figure types on a laptop, with abstract manifesto-like posters taped to the wall behind them

    Hacktivism Is a Growing Threat to Higher Education

    In recent years, colleges and universities have faced an evolving array of cybersecurity challenges. But one threat is showing signs of becoming both more frequent and more politically charged: hacktivism.