Howard University canceled classes Tuesday as it continues to investigate a ransomware attack on the school’s network, according to an interim update on the situation posted by the university, which is in Washington, DC.
The university’s information technology team detected “unusual activity” on the network last week and shut it down to investigate the situation, the statement said.
“The situation is still being investigated,” according to the university, but “based on the investigation and the information we have to date, we know the University has experienced a ransomware cyberattack.”
“To date, there has been no evidence of personal information being accessed or exfiltrated; however, our investigation remains ongoing, and we continue to work toward clarifying the facts surrounding what happened and what information has been accessed,” the statement adds.
In July, the US education sector saw a 15% increase in cyberattacks, compared to the first half of 2021, with an average of 853 attacks a week, according to Check Point Research, a private firm that tracks such incidents.
That trend is consistent with a warning issued by US intelligence officials late last year, which said that universities and schools are being targeted by malicious cyber actors, including ransomware criminals, during the coronavirus pandemic.
In a joint cyber security bulletin issued at the time by the FBI, DHS and a consortium that monitors nationwide online threats, officials said hackers are “targeting kindergarten through twelfth grade (K-12) educational institutions, leading to ransomware attacks, the theft of data and the disruption of distance learning services.”
The bulletin noted that hackers targeting schools have disrupted the ability to conduct distance learning, and adopting malicious techniques previously used against corporate America, have stolen and threatened to leak confidential student data unless a ransom is paid.
In addition to the theft of student data, intelligence officials said hackers continue to disrupt remote learning systems that schools have been forced to adopt due to pandemic social distancing requirements.
Cyberattacks against schools have caused significant disruptions for students, parents and teachers trying to adapt to increased distance learning programs. There have been many incidents reported over the last two years, but one of the most severe occurred in Baltimore County, Maryland, where schools — which service 115,000 students — were forced to close for three days last month due to a ransomware attack.
CNN reported last month that a Texas school district was forced to pay ransomware attackers half a million dollars after threat that the personal information of students and teachers would be released by the hackers.