Ransomware attacks are on the rise as the new school year begins in the United States. The Cleveland City Schools district recently disclosed that it fell victim to a ransomware attack. District spokesperson Caroline Corrigan stated in a letter that their district, like many others nationwide, is dealing with a ransomware incident. However, only 5% of all devices connected to the network were impacted, and no student or faculty data were compromised. In-person classes will continue as scheduled.
According to The Record, hackers tend to target schools at crucial moments of the year, such as the start of a new school year. They know that administrators will heavily rely on technology and be under pressure to keep operations running smoothly. This trend has been evident as Prince George’s County Public Schools, one of the largest school districts in the country, also announced that it experienced a cyberattack. Additionally, the Akira ransomware gang targeted two primary schools, adding to their list of victims.
Not only K-12 institutions but higher education institutions are also being targeted during this time of the year. The University of Missouri recently disclosed a potential data breach. The attack is related to a vulnerability in the popular MOVEit file transfer application, which has been exploited in a mass-hack affecting numerous organizations worldwide. Pension Benefit Information, LLC, a third-party subcontractor for several university vendors including the University of Missouri, was the target of the hack. It is possible that school data were among the compromised files. Current and former students and employees have been advised to remain cautious about any suspicious activity in their accounts.
In an unexpected turn of events, a recent presentation at the DEF CON cybersecurity conference revealed that robot vacuums may pose a threat to security. Dennis Giese, a researcher, addressed this topic and spoke about preventing robot vacuum cleaners from sending data back to their vendors. Many of these smart vacuums are equipped with cameras, which manufacturers claim are solely used to assist the robot in cleaning without running into obstacles. They also maintain that the images captured are never sent back to the cloud. However, Giese discovered that at least one manufacturer offers a feature that allows consumers to remote access the camera, suggesting that the footage is likely shared through the company’s cloud servers. Some companies have responded to negative press about these cameras by insisting that their vacuums only have “optical sensors.” However, Giese argues that this is merely clever wordplay. Additionally, researchers found that some vacuums certified by reputable testing labs had privacy and security issues that went undetected. In light of these findings, consumers are advised to thoroughly vet these products before allowing them into their homes. If in doubt, using an old-fashioned broom is deemed the most secure option, albeit a tedious one.
In conclusion, ransomware attacks are targeting schools as the new academic year begins in the US. Multiple school districts, including the Cleveland City Schools district and Prince George’s County Public Schools, have fallen victim to cyberattacks. Similarly, higher education institutions like the University of Missouri are also experiencing data breaches. Additionally, the DEF CON cybersecurity conference revealed concerns over the security of robot vacuum cleaners, as they may collect and transmit data without the users’ knowledge. As technology continues to advance, it is crucial for institutions and consumers to remain vigilant and invest in robust cybersecurity measures to protect against potential threats.