lockbit2 attacks westminster
Incident Date:
April 4, 2022
Overview
Title
lockbit2 attacks westminster
Victim
westminster
Attacker
Lockbit2
Location
First Reported
April 4, 2022
Westminster University Targeted by Lockbit2 Ransomware Group
About Westminster University
Westminster University, established in 1838, is one of the oldest and largest polytechnic institutions in London, offering education to over 19,000 students from 169 nations. The university employs more than 2,000 people and has partnerships with nearly 200 organizations throughout the U.K., providing placements and work experience opportunities for its students.
Vulnerabilities and Impact
The attack on Westminster University highlights the growing threat of ransomware attacks on educational institutions. In recent years, ransomware gangs have increasingly targeted the education sector, exploiting vulnerabilities in outdated infrastructure, insufficient security controls, and the shift to remote learning during the COVID-19 pandemic.
The Lockbit2 ransomware group is known for its aggressive tactics, including double extortion, where stolen data is threatened to be released online if a ransom is not paid. The group has targeted various sectors, including manufacturing, communications, healthcare, and public healthcare, and has been linked to attacks on the City of Dallas and the Dallas Central Appraisal District.
Mitigation Strategies
To protect against ransomware attacks, educational institutions should implement robust cybersecurity measures, such as:
- Enhancing threat detection and response capabilities
- Strengthening security posture by addressing capacity constraints
- Implementing 24/7 threat detection and response services
- Improving visibility across operating systems
- Regularly updating antivirus software
- Educating staff and students on cybersecurity best practices
- Backing up data and regularly testing disaster recovery plans
The Lockbit2 ransomware attack on Westminster University underscores the importance of robust cybersecurity measures in the education sector. By implementing best practices and staying vigilant, educational institutions can better protect themselves against the evolving threat landscape.
Sources
- Westminster University Website
- Cyberattacks on Educational Institutions in 2017
- City of Dallas Suffers a Ransomware Attack
- Rhysida, the New Ransomware Gang Behind British Library Cyber-Attack
- University of Westminster Customer Story - CrowdStrike
- Ransomware Targeting Educational Institutions - FSA Partner Connect
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.