The University of Jute became the latest victim of ransomware attacks, with hackers being paid nearly half a million dollars not to release sensitive information online.
Although no details were released about the type of ransomware used for the attack, the university confirmed that the infection affected 0,02% of the data stored on its servers and that the exposed information belonged to employees and students.
The university reinstated the data using copies security, and no central university IT systems were compromised, but payment was necessary because the hackers threatened to release the stolen information on the Internet.
"After careful consideration, the university decided to work with the cyber insurance company and pay the ransomware attacker a fee. "This was done as a precautionary measure to ensure that information would not be circulated on the Internet," the University of Utah explained in announcement on his page.
The university ended up paying over $ 457.000 to the hackers and part of the ransom was covered by the cyber insurance policy.
“The CSBS servers were immediately isolated from the rest of the university and the Internet. The university notified the appropriate law enforcement authorities and the ISO began actively investigating the matter. An external consultant with expertise in handling these situations was also hired to support the research", states the public announcement.
The university recommends that students and staff continue to use strong passwords and change them on a regular basis to make it difficult for intruders to access their accounts.
However, the university admits that other vulnerabilities may still exist in its systems, but additional security upgrades are currently being implemented, including transportof all college systems, in centralized services, for improved protection.
I wanted to know which "insurance company" proposes to pay a ransom to criminals.
Something "stinks" to me in this case.
And not in order to get back, but in order not to leak the 0,02% data on the internet. As if you were right…