Cybersecurity in Tertiary Education: A Growing Concern

When we think of industries vulnerable to cyberattacks, tertiary education may not be the first sector that comes to mind. However, recent findings from Microsoft’s Cyber Signals report reveal a startling reality: education was the third most targeted industry in the second quarter of this year. The combination of valuable data and inherent vulnerabilities within educational institutions has attracted the attention of various cybercriminals, from those employing sophisticated malware techniques to nation-state actors engaged in traditional espionage.

The Cyber Threat Landscape in Africa

This issue is particularly pressing for tertiary institutions in Africa, a region identified as one of the most targeted globally for cyberattacks. A recent study focusing on 60 Kenyan universities highlighted a troubling trend: many institutions are grappling with frequent hacks while simultaneously lacking adequate cybersecurity policies and controls. These deficiencies span organizational, human, physical, and technological resources, leaving universities exposed to potential breaches.

In 2023, a prominent Moroccan university experienced a significant security breach affecting its master’s degree nomination platform. Similarly, a private university in Nigeria had its website completely compromised by hackers. Such incidents underscore the urgent need for robust cybersecurity measures in the education sector.

The Scale of the Threat

According to the Cyber Signals report, the education sector has been inundated with cyber threats, with more than 15,000 emails containing malicious QR codes sent daily to educational institutions using Microsoft Office 365. This statistic highlights the targeted and persistent nature of these threats, necessitating immediate action from educational leaders.

Why Are Educational Institutions Targeted?

Several factors contribute to the education sector’s vulnerability to cyberattacks:

1. Diverse User Base: Universities host a wide range of users—students, faculty, administrative staff, and external collaborators. This diversity creates a complex environment where security protocols can be challenging to enforce.

2. Open Environment: The inherently open nature of university systems often leads to relaxed email security. Institutions must balance accessibility for alumni, donors, and external partners with the need for robust cybersecurity measures, making them prime targets for cybercriminals.

3. Remote Learning Challenges: The shift to virtual and remote learning has extended educational applications into homes and offices, where personal and shared devices—often unmanaged—are prevalent. Students, who may lack cybersecurity awareness, can inadvertently expose their devices to risks.

4. Legacy Infrastructure: Many tertiary institutions face funding and operational challenges, leading to a reliance on outdated IT systems alongside newer technologies. This patchwork of infrastructure complicates cybersecurity efforts and increases vulnerability.

5. Attractive Targets for Nation-State Actors: Educational institutions often handle sensitive information and cutting-edge research, making them appealing targets for cybercriminals seeking to steal intellectual property or leverage sensitive data for espionage.

Strengthening Cybersecurity Measures

While enhancing cybersecurity can seem daunting and costly, there are actionable steps that educational institutions can take to protect themselves:

Understanding the Threat Environment

A clear understanding of the current threat landscape is essential. Reports like Microsoft’s Cyber Signals provide invaluable insights for chief information security officers (CISOs) and their teams, helping them refine technologies, policies, and processes. These resources highlight the tactics and techniques employed by cybercriminals, enabling institutions to stay one step ahead.

Promoting Cyber Hygiene

Maintaining strong cyber hygiene is crucial. Raising awareness about security risks and promoting best practices among students, faculty, staff, and administrators can foster a safer environment. Educational institutions should prioritize training on good security habits, including the use of multifactor authentication (MFA) or passwordless options, which can reduce the likelihood of account hacks by over 99.9%.

Centralizing IT Management

For IT and security professionals in education, centralizing technology setups can enhance monitoring capabilities and facilitate the identification of vulnerabilities. Implementing protective domain name services (DNS) can help block access to harmful websites, thereby preventing ransomware and other cyberattacks.

Leveraging AI-Powered Security Solutions

Under-resourced IT teams can benefit from tools like Microsoft Copilot for Security, which enhances the efficiency and capabilities of security defenders. This AI-powered solution supports professionals in various scenarios, including incident response, threat hunting, and posture management, allowing them to improve security outcomes at scale.

Fostering a Culture of Security

Building a robust security posture is not solely about technology; it also involves cultivating a culture of vigilance and preparedness. By investing in cybersecurity measures now, universities can safeguard their valuable assets and ensure that their critical work continues without disruption.

In conclusion, the growing threat of cyberattacks in the education sector demands immediate attention and action. By understanding the unique vulnerabilities they face and implementing proactive measures, tertiary institutions can better protect themselves against the increasing tide of cyber threats. As Phyllis Migwi, Country General Manager at Microsoft Kenya, emphasizes, fostering a watchful culture ready to manage potential attacks is essential for securing the future of education in Africa and beyond.