Distributed denial of service (DDoS) attacks (attacks that aim to overwhelm a network until the server crashes) against educational resources grew exponentially over the first half (H1-20) of this year when compared to the previous year. For each month from January to June 2020, the number of DDoS attacks affecting educational online resources increased by at least 350% when compared to the corresponding month in 2019.
In a denial of service (DoS) attacks, cyber criminals attempt to overwhelm a network server with requests for services so that the server crashes – denying users access. While DoS attacks involve only one attack computer, what typically occurs is a distributed denial of service (DDos) attack. These involve a “botnet” – a series of infected computers that can carry out tasks simultaneously. DDoS attacks are particularly problematic because they can last anywhere from a couple days to a few weeks, causing disruptions to organisations’ operations and – in the case of educational resources – denying students and staff access to critical materials.
With more people than ever online over the last six months due to the pandemic, networks became a preferred target of an attack. In fact, globally, the total number of DDoS attacks increased by 80% in the first quarter of 2020 when compared to Q1 2019. Moreover, attacks on educational resources accounted for a large portion of this growth. Between January and June 2020, the number of DDoS attacks affecting educational resources increased by at least 350%when compared to the corresponding month in 2019.
|Percent increase when compared to 2019||January:
The percent growth in the number of attacks on educational resources when compared to the same month of the previous year
DDoS attacks weren’t the only cyber threats faced by educators and students over this time. From January to June 2020, 168,550 unique Kaspersky users encountered an increase in number of various threats distributed under the guise of popular online learning platforms/video conferencing applications (Moodle, Zoom, edX, Coursera, Google Meet, Google Classroom, Blackboard). Educators also encountered an increasing number of phishing pages and emails exploiting these same platforms, also putting them at risk of downloading various threats according to Kaspersky research.
“Remote learning has become a necessity for billions of students this year, and many educational institutions were forced to make the transition with little or no preparation. The ensuing increase in the popularity of online educational resources coupled with this lack of preparedness made the educational sector an ideal target for cyber-attacks. Moving forward, as many schools and universities plan to conduct classes online – at least part of the time – it’s critical these organisations take steps to secure their digital learning environments,” comments Alexander Gutnikov, security expert at Kaspersky.
To stay protected from DDoS attacks, Kaspersky experts recommend:
- Maintain web resources operations by assigning specialists who understand how to respond to DDoS attacks. They must also be prepared to respond out-of-hours, during evenings and weekends
- Validate third-party agreements and contact information including those made with Internet service providers. This helps teams quickly access agreements in case of an attack
- Implementing professional solutions will safeguard an organisation from DDoS attacks.