web analytics

Trauma, Terrorist Victim Data Breached in University Attack – Source: www.govinfosecurity.com

trauma,-terrorist-victim-data-breached-in-university-attack-–-source:-wwwgovinfosecurity.com
Rate this post

Source: www.govinfosecurity.com – Author: 1

Cybercrime
,
Fraud Management & Cybercrime
,
Governance & Risk Management

NHS Patient Data, Student, Alumni Records Compromised at University of Manchester

Marianne Kolbasuk McGee (HealthInfoSec) •
June 29, 2023    

Trauma, Terrorist Victim Data Breached in University Attack
Image: University of Manchester

The sensitive personal information of about 1.1 million National Health Service patients including trauma patients and victims of terrorism is reportedly among data compromised in a recent cyberattack on the United Kingdom’s University of Manchester. The hacking incident also affected students and alumni.

See Also: Live Webinar | Reclaim Control over Your Secrets – The Secret Sauce to Secrets Security

A “criminal entity” accessed and copied the data in an attack discovered the week of June 6, the university said in an updated statement on Thursday (see: Breach Roundup: More MOVEit Victims, Including US Government).

The compromised NHS data includes records of major trauma patients across England and individuals treated after terror attacks, which the university collected for research purposes, according to media outlet The Independent on Thursday.

Student and alumni information affected by the attack includes names, contacts, addresses, university IDs and demographic data, the university said (see: Breach Roundup: More MOVEit Victims, Including U.S. Government).

The Independent said it had viewed an NHS document containing an analysis of the incident showing that the university’s backup servers and about 250 gigabytes of data were accessed in the attack.

Neither the NHS nor the University of Manchester immediately responded to Information Security Media Group’s requests for comment and for details involving the attack and data breach.

Ongoing Disruptions

So far, the university said, it has not found evidence suggesting that bank or payment details were compromised in the incident. “However, you should contact your bank for advice if you are concerned,” the school advised students and alumni.

The university said it is still dealing with IT system disruptions as it recovers from the attack.

“Access to the GlobalProtect VPN service off campus has been temporarily removed. It is not expected to be made available again before August 2023,” the university said on its website Wednesday.

“Colleagues who work remotely may not be able to access some of the systems they need to perform their role. The VPN service is available on campus only.”

The university’s accommodation system for student housing also are still affected.

“You cannot make an application at this current moment in time. Please keep checking our website regularly for further updates,” the university’s website says. “While we don’t have a confirmed date when the accommodation system will be available, we hope to be able to accept applications again very soon.”

The university said it is working with various government entities in the aftermath of the incident, including the Information Commissioner’s Office, the National Cyber Security Center, the National Crime Agency and other regulatory bodies.

Experts say universities and healthcare sector entities across the globe have been prime targets for cybercriminals in recent years.

“Post-secondary schools have been a popular target for ransomware actors since 2019, with at least 52 U.S. institutions having been hit this year alone,” said Brett Callow, a threat analyst at security firm Emsisoft.

These entities are a popular target because cybercriminals have found attacks on the sector to be profitable, he said.

“The only way to solve this problem – and ransomware generally – is to alter the risk/reward ratio. In other words, there needs to be more bad guys prosecuted and fewer organizations paying ransoms.”

In the United Kingdom, ransomware-as-a-service group BlackCat in February dumped more than 6 gigabytes of information stolen from Ireland’s Munster Technological University on the dark web (see: BlackCat Leaks Data Belonging to Irish University).

The NHS also has been a victim of cyberattacks. Last August, an attack on one of its technology providers resulted in several weeks of disruptions for Britain’s public health system, including its NHS 111 services (see: Ransomware Attack Caused NHS IT Outage, Says Vendor).

The University of Manchester has not publicly disclosed the cybercriminal group believed to be behind the attack.

Original Post URL: https://www.govinfosecurity.com/trauma-terrorist-victim-data-breached-in-university-attack-a-22409

Category & Tags: –

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post

SCYTHE
Better Cybersecurity Metrics – SOC Metrics – Threat Hunting Metrics – Cyber Threat Intelligence (CTI) Metrics – Incident Response (IR) Metrics for CISOs by SCYTHE
Better Cybersecurity Metrics – SOC...
OCCUPYTHEWEB
Linux Basics for Hackers by Occupytheweb
Linux Basics for Hackers by...
US Deparment of Defense
DevSecOps Fundamentals Guidebook – Tools & Activities by American Deparment of Defense
DevSecOps Fundamentals Guidebook – Tools...
Think Big Blog
Top 10 TED Talks to Learn about Cyber Security
Top 10 TED Talks to...
Joas Antonio
Guide for Multi-Cloud Read Team AWS – GCP – AZURE by Joas Antonio
Guide for Multi-Cloud Read Team...
CISO2CISO Notepad Series
The sqreen DevSecOps Security Checklist
The sqreen DevSecOps Security Checklist
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich
Why do we compare a...
Joas Antonio
Security Operations Center (SOC) – Tools for Operations Development by Joas Antonio
Security Operations Center (SOC) –...
IZZMIER
Incident Response Playbooks & Workflows Ready for use in your SOC & Redteams
Incident Response Playbooks & Workflows...
LOGPOINT
396 Use Cases & Siem Rules Code ready for use for Mitre Attacks Events Detection in Your SOC by Logpoint
396 Use Cases & Siem...
Forrester - Allie Mellen
Adapt Or Die: XDR Is On A Collision Course With SIEM And SOAR – EDR Is Dead, Long Live XDR by Allie Mellen – Forrester
Adapt Or Die: XDR Is...
CYBER LEADERSHIP INTITUTE
CISO PLAYBOOK: FIRST 100 DAYS Setting the CISO up for success
CISO PLAYBOOK: FIRST 100 DAYS...

LASTEST PUBLISHED POSTS

National Security Agency
CSI Cloud Top10 Key Management
CSI Cloud Top10 Key Management
CSA Cloud Security Alliance
Defining the Zero TrustProtect Surface
Defining the Zero TrustProtect Surface
HANIM EKEN
CONTAINER SECURITY INTERVIEW QUESTIONS ANSWERS
CONTAINER SECURITY INTERVIEW QUESTIONS ANSWERS
CNIL
PRACTICE GUIDE GDPR – SECURITY OF PERSONAL DATA Version 2024
PRACTICE GUIDE GDPR – SECURITY...
PWNED LABS
Cloud Security Engineer Roadmap
Cloud Security Engineer Roadmap
tutorialspoint.com
Cloud Computing Tutorial Simply Easy Learning
Cloud Computing Tutorial Simply Easy...
SMITHA SRIHARSHA
CISSP Preparation Notes
CISSP Preparation Notes
CISSP Mind Map: All Domains
CISSP Mind Map: All Domains
Lansweeper
CIS 18 CRITICAL SECURITY CONTROLS CHECKLIST
CIS 18 CRITICAL SECURITY CONTROLS...
Semaphore
CI-CD with Docker and Kubernetes
CI-CD with Docker and Kubernetes
EC-MSP
BUSINESS CONTINUITY PLAN & DISASTER RECOVERY PLAN TEMPLATE
BUSINESS CONTINUITY PLAN & DISASTER...
PWC
Building a risk-resilient organisation
Building a risk-resilient organisation

More Latest Published Posts

40 under 40
40 under 40 in CyberSecurity 2024
40 under 40 in CyberSecurity 2024
HADESS
40 Days in DeepDark Web About Crypto Scam
40 Days in DeepDark Web About Crypto Scam
Everbridge
8 Principles of Supply Chain Risk Management
8 Principles of Supply Chain Risk Management
CHAOSSEARCH
Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment
Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment
ENDGAME
The Hunters Handbook Endgame’s Guide to Adversary Hunting
The Hunters Handbook Endgame’s Guide to Adversary Hunting
THE EU’S MOST THREATENING by EUROPOL
THE EU’S MOST THREATENING by EUROPOL
National Cyber Security Centre
Responding to a cyber incident – a guide for CEOs
Responding to a cyber incident – a guide for CEOs
IGNITE Technologies
CREDENTIAL DUMPING
CREDENTIAL DUMPING
HADESS
Pwning the Domain Lateral Movement
Pwning the Domain Lateral Movement
Jorgen Lanesskog
PING Basic IP Network Troubleshooting
PING Basic IP Network Troubleshooting
TELESOFT
Layer 7 Visibility What are the Benefits?
Layer 7 Visibility What are the Benefits?
TIGERA
Introduction to Kubernetes Networking and Security
Introduction to Kubernetes Networking and Security
Department of Defense's (DoD)
Defense Industrial Base Cybersecurity Strategy 2024
Defense Industrial Base Cybersecurity Strategy 2024
Dummies
Zero Trust Access for Dummies Fortinet
Zero Trust Access for Dummies Fortinet
Homeland Security
Zero Trust Implementation Strategy
Zero Trust Implementation Strategy
National Australia Bank Limited
Your Business and Cyber Security
Your Business and Cyber Security
CYFIRMA
Xeno RAT- A New Remote Access Trojan
Xeno RAT- A New Remote Access Trojan
IGNITE Technologies
Windows Persistence COM Hijacking MITRE T1546 015
Windows Persistence COM Hijacking MITRE T1546 015
IGNITE Technologies
Windows Exploitation Rundll32
Windows Exploitation Rundll32
IGNITE Technologies
Windows Exploitation Msbuild
Windows Exploitation Msbuild
HADESS
Web LLM Attacks
Web LLM Attacks
HADESS
Trended Protocols for Security Stuff
Trended Protocols for Security Stuff
Red Iberoamericana de Protección de Datos
Transferencia Internacional de Datos Personales – Guia de Implementación
Transferencia Internacional de Datos Personales – Guia de Implementación
CYFIRMA
TRACKING RANSOMWARE January 2024
TRACKING RANSOMWARE January 2024
https://www.linkedin.com/in/harunseker/
TOP Cyber Attacks Detected by SIEM Solutions
TOP Cyber Attacks Detected by SIEM Solutions
TRAVARSA
Top 100 Cyber Threats and Solutions 2024
Top 100 Cyber Threats and Solutions 2024
Top 50 Cybersecurity Threats
Top 50 Cybersecurity Threats
OWASP
Top 10 Considerations for Incident Response
Top 10 Considerations for Incident Response