Cybercriminals Increasingly Targeting African Universities, Report Warns

According to a recent survey, tertiary institutions throughout Africa are experiencing increased cyberattacks, with universities emerging as major targets for cybercriminals. According to Microsoft's most recent Cyber Signals report, the education sector was the third most targeted industry in the second quarter of this year, highlighting its increasing susceptibility to cyberattacks.

Cybercriminals Increasingly Targeting African Universities, Report Warns

According to a recent survey, tertiary institutions throughout Africa are experiencing an increase in cyberattacks, with universities emerging as major targets for cybercriminals. According to Microsoft's most recent Cyber Signals report, the education sector was the third most targeted industry in the second quarter of this year, highlighting its increasing susceptibility to cyberattacks.

According to a different survey, most of the 60 Kenyan universities that struggled with inadequate cybersecurity policies and controls had been the target of hacking efforts. Notably, top universities in Morocco and Nigeria have also experienced significant breaches, demonstrating how pervasive the problem is throughout the continent. According to the Microsoft analysis, hackers are taking advantage of universities' open structures, which cater to a variety of users, including staff, teachers, and students.

Universities are especially vulnerable since they rely on email systems for communication; according to the survey, more than 15,000 malicious emails including QR codes were sent to the education sector every day using Microsoft Office 365 email. Microsoft stated that several factors contribute to the growing sophistication of these attacks. It added that universities are attractive targets for nation-state actors interested in espionage and cybercriminals looking to profit from ransomware because they frequently hold valuable intellectual property (IP) and have strong relationships with government organizations.

According to the report, attackers may first compromise sector personnel before using that access to target more valuable assets. The research suggested that institutions implement more robust cybersecurity measures to counter these threats, which include increasing awareness among students, employees, and faculty about security risks, centralizing technology infrastructure for better vulnerability monitoring, and deploying security tools like protective domain name services to block access to malicious websites.

According to the survey, implementing multifactor authentication (MFA) and strict password regulations could also greatly lower the risk of unauthorized access. According to a Microsoft analysis, AI-powered solutions like Microsoft Copilot for Security may strengthen defenses by automating processes like incident response and threat detection, making them ideal for universities with limited IT personnel. The report promised that African institutions could better safeguard their priceless data and research by investing in more robust cybersecurity measures and cultivating an awareness-raising culture, guaranteeing a safer future for education on the continent.

Highlights of the report are listed below:

Higher education is perhaps not the first industry that comes to mind when considering potential targets for cybercriminals.

However, in the second quarter of this year, education was the third most targeted industry, according to the most recent edition of Microsoft's Cyber Signals report. Numerous attackers, ranging from those employing novel malware techniques to nation-state actors engaged in conventional espionage, have taken notice of the combination of valuable data and inherent weaknesses in education systems. Higher education institutions in Africa, one of the most often attacked regions globally in terms of cyberattacks, should be especially concerned about this.

Indeed, a recent analysis of 60 Kenyan colleges revealed that the majority of them were dealing with hacking in addition to a deficiency of proper cybersecurity policies and procedures, including organizational, human, physical, and technology resources. Only a year ago, a well-known Moroccan university learning was hit by a security breach of its master’s degree nomination platform, while a private university in Nigeria had its website completely overtaken by hackers. The education industry’s vulnerabilities haven’t gone unnoticed by cybercriminals.

"More than 15,000 emails with malicious QR codes were sent daily to the sector using Microsoft Office 365 email, according to the Cyber Signals research, in only the last year. This demonstrates how specialized and enduring these dangers have grown.Hackers frequently target the education industry for several reasons. Universities, in contrast to other types of businesses, have a wide range of users, including faculty, administrative staff, students, and others. University campuses are especially susceptible to cyberattacks because of their open and dynamic nature, which includes frequent activities and international students. School email systems provide many opportunities for compromise. Universities are frequently more negligent regarding email security because of this inherently open setting. Institutions are constrained in how they can place emails since they are causing noise in the system.

School systems are vulnerable due to legacy infrastructure.

The tertiary education sector frequently encounters well-known operational and financial difficulties. This implies that modern digital classrooms must coexist with more traditional software and other IT resources. It's challenging to manage and protect these diverse systems, particularly when it's difficult to retain cybersecurity professionals on staff. School systems are more susceptible to attacks as a result of this combination. High-level contacts and valuable intellectual property are sought after by nation-state players. Schools are targets for ransomware and extortion because cybercriminals are aware that they handle sensitive, regulated data and need to remain open and accessible. Universities serve as centers for cutting-edge research and valuable intellectual property, frequently in partnership with governmental organizations. Because of this, they are appealing to attackers who want to steal or use private information.

For instance, hackers may find it simpler to first target an education professional with connections to the defense industry, and then utilize that connection to execute more convincing phishing attacks on more valuable targets. Introducing a robust curriculum for security There are actions schools can take to defend themselves, but strengthening security measures can be a difficult and costly undertaking. A crucial first step is to have a thorough awareness of the threat environment. As they improve technology, policies, and procedures, chief information security officers and their teams can benefit greatly from reports such as Cyber Signals. Based on the most recent Microsoft threat data and research, this quarterly cyber threat intelligence brief offers professional insights into the current threat landscape, and the strategies and techniques used by threat actors. It underscores Microsoft’s commitment to securing the digital ecosystem, in which we play such a central role. At Microsoft, security is our top priority, ensuring we earn and maintain the trust placed in us.

Beyond recent discoveries, it is essential to practice good cyber hygiene. A safer workplace can be achieved by educating administrators, staff, faculty, and students on security threats and encouraging best practices. It's wise for IT and security professionals working in education to start with the fundamentals and then strengthen security. Centralizing the technology setup can help with better activity monitoring and easier vulnerability detection. IT teams are specifically advised by the Cyber Signals report to consider utilizing "protective domain name service," a useful free solution that can help prevent ransomware and other assaults by preventing access to malicious websites. They should make sure to implement multi-factor authentication and enforce strong passwords to thwart password spray assaults.

"Tools like Microsoft Copilot for Security can greatly increase the effectiveness and capabilities of security defenders for under-resourced IT teams, enabling them to improve their security outcomes at machine speed and scale." This AI-powered security solution supports professionals in end-to-end situations such as incident response, threat hunting, intelligence collecting, and posture management by offering an assisting copilot experience. Universities should also urge staff and students to utilize multifactor authentication or passwordless solutions and train them about appropriate security practices. The report claims that multi-factor authentication reduces the likelihood of account hacking by over 99.9%.

Universities should better prepare themselves to repel the growing threats to their sensitive data and ground-breaking research by implementing more robust defenses and preventative measures. Technology is only one aspect of creating a strong security posture; another is cultivating a vigilant culture that is equipped to handle possible threats. By making these investments immediately, they can protect their priceless assets and guarantee that their vital work is carried out uninterrupted.