Exams cancelled after Northumbria University cyber attack

"IT difficulties" force clearing hotline and student portal offline

Northumbria University has been hit with a cyber attack that has caused "significant operational disruption" to its IT systems.

An investigation into the incident is "still at an early stage" and the method of the attack is still unknown.

The university's clearing service has been affected by the attack, with applicants being directed away from a hotline to an alternative email address. A number of exams scheduled for this week have also been postponed.

In a letter to students, professor Peter Francis, the deputy vice-chancellor, confirmed that Northumbria Univerity had brought in external security specialists to mitigate any damage to its systems. The university has also informed the Northumbria police and the Information Commissioner's Office, as a precaution, he said.

Students were warned of "some IT difficulties" in a tweet posted on Friday, which was shortly after followed by a second post warning that the clearing hotline, used for students attempting to enrol on alternative courses after receiving their grades, was no longer able to take calls.

In a final tweet on Friday, the university announced that exams due to take place that day would be resecheduled.

"Northumbria is now in a position to advise that we have been the victim of a cyber incident," Francis said. "The investigation is still at an early stage and we are working to recover the university's systems and services as safely as possible in order to minimise the impact on you all."

As a result, students will not be able to access their online student portal and other platforms for the remainder of the week as the university attempts to restore its network and connected services.

Although there are few details of the attack method, 2020 has already seen a rise in the number of universities targeted by ransomware or data breaches. In July, cloud service provider Blackbaud had to notify its customers of a data breach, which included universities in the UK, US and Canada.

"While the exact details of this attack are yet to be revealed, universities receive the largest number of targeted phishing emails, which trick the recipient into clicking a malicious link or transferring funds," said Dave Palmer, director of technology at Darktrace. "Attackers are constantly innovating and they will only get more sophisticated. Universities typically have complex and porous digital systems so attackers can often find their way back in repeatedly to cause more harm."

Featured Resources

Four cyber security essentials that your board of directors wants to know

The insights to help you deliver what they need

Download now

Data: A resource much too valuable to leave unprotected

Protect your data to protect your company

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

Recommended

Best ransomware removal tools
Security

Best ransomware removal tools

17 Nov 2020

Most Popular

80% of cyber professionals say the Computer Misuse Act is working against them
Security

80% of cyber professionals say the Computer Misuse Act is working against them

20 Nov 2020
Cisco acquires container security startup Banzai Cloud
Security

Cisco acquires container security startup Banzai Cloud

18 Nov 2020
46 million Animal Jam accounts leaked after comms software breach
Security

46 million Animal Jam accounts leaked after comms software breach

13 Nov 2020