Network Security
Vulnerability Management
Privileged Access Management
Endpoint Security
Threat Hunting
Unified Endpoint Management
Email & Collaboration Security
Contents:
The University of Manchester network was reportedly hit by a cyberattack and the security team suspects data was stolen.
Researchers discovered the data breach on Tuesday, June 6th. Threat actors managed to gain unauthorized access to some of the university`s systems and allegedly exfiltrate data.
The University informed all relevant authorities about the data breach and opened an ongoing investigation. In addition, both in-house experts and external support are working at the moment to find out how the breach occurred and restore the system.
For now, it is not clear who is behind the attack or how many people did it affect. In addition, the team is still investigating what kind of data were hackers able to access.
Our in-house team is working around-the-clock with specialist external experts to identify any breaches and prevent further unauthorised access.
We are working to understand what data has been accessed and will update as more information becomes available.
Security Recommendation for Students and Staff
Although for now the University’s members are not necessarily advised to change passwords, security specialists recommend them to:
- Beware of phishing attempts. Any suspicious phishing email should be treated carefully. Specialists advise students and staff not to click on any links and not to reply to any unrequested or unidentified emails.
- Immediately report any suspicious activity observed on a university account to the IT Support Centre by calling 0161 306 5544.
- Although there is no information that suggests hackers compromised personal bank details, those concerned about the topic can contact their bank’s fraud team for advice.
You should be vigilant to any suspicious phishing emails. The NCSC has guidance for individuals advising on how to protect against the impacts of data breaches: Data breaches: guidance for individuals and families – NCSC.GOV.UK. There is also guidance on phishing. University IT Services have also published advice.
More about the Attack
According to the University of Manchester, the attack does not appear to be related to the recent MOVEit operations series.
While the University does not offer additional details, BleepingComputer claims to have sources that indicate the incident was a ransomware attack.
The University of Manchester, one of the UK’s largest and most successful education and research institutions, has more than 10,000 staff members and 45,000 students.
If you liked this article, follow us on LinkedIn, Twitter, Facebook, and Youtube, for more cybersecurity news and topics.
