Phishing in the Education Sector

 

Image Source: Pixabay

In the 4th annual “State of the Phish” report, Wombat Security Technologies announced that roughly 1 out of 10 individuals in the Education sector responded to phishing emails. According to a recent article published on Campus Technology, author Rhea Kelly summarizes the key takeaways of the report:

Education had an average click rate of 10 percent; the industries that performed worst in the tests were telecommunications and retail, with 15 percent and 14 percent average click rates, respectively (Kelly).

Phishing is a targeted attack – usually by email – which attempts to get a user to click on a malicious link or input their credentials to an outside, sometimes criminal, entity. These phishing emails are often made to appear as though they come from a trusted entity within an organization, and rely on getting the recipient to respond quickly due to some expressed sense of urgency.

Universities and colleges possess large amounts of intellectual property; therefore, this makes any student, faculty or staff member a potential target for this type of attack. However, they can protect themselves against phishing attacks by simply being able to recognize and scrutinize the legitimacy of the sender; moreover, they should also enable two-factor authentication to add an extra layer of security, and prevent unauthorized access – even with a correct password. By following and practicing some of these approaches, we can help bring down the number of successful phishing attacks in the Education sector. 

For more information, read the full article on Campus Technology.