Analysing cyber attacks and cyber security vulnerabilities in the university sector

Journal article

Lallie, H., Thompson, A., Titis, E. and Stephens, P. 2025. Analysing cyber attacks and cyber security vulnerabilities in the university sector. Computers. 14 (2), p. 49. https://doi.org/10.3390/computers14020049
AuthorsLallie, H., Thompson, A., Titis, E. and Stephens, P.
AbstractUniversities hold and process vast amounts of financial, user, and research data, which makes them prime targets for cybercriminals. In addition to the usual external threat actors, universities face a unique insider threat from students, who—alongside staff—may lack adequate cyber security training despite having access to various sensitive systems. This paper provides a focused assessment of the current cyber security threats facing UK universities, based on a comprehensive review of available information. A chronological timeline of notable cyber attacks against universities is produced, with incidents classified according to the CIA triad (Confidentiality, Integrity, Availability) and incident type. Several issues have been identified. Limited disclosure of attack details is a major concern, as full information is often withheld for security reasons, hindering institutions’ abilities to assess vulnerabilities thoroughly and respond effectively. Additionally, universities increasingly rely on third-party service providers for critical services, meaning that an attack on these external providers can directly impact university operations and data security. While SQL injection attacks, previously a significant issue, appear to have declined in frequency—perhaps reflecting improvements in defences—other threats continue to persist. Universities report lower levels of concern regarding DDoS attacks, potentially due to enhanced resilience and mitigation strategies; however, ransomware and phishing attacks remain prevalent. Insider threats, especially from students with varied IT skills, exacerbate these risks, as insiders may unknowingly or maliciously facilitate cyber attacks, posing ongoing challenges for university IT teams. This study recommends that universities leverage these insights, along with other available data, to refine their cyber security strategies. Developing targeted policies, strengthening training, and implementing international standards will allow universities to enhance their security posture and mitigate the complex and evolving threats they face.
KeywordsCyber crime; UK universities; Cyber attack timeline; Insider threat; Student insider threat; Human factors; Cyber security awareness; Cyber security in higher education
Year2025
JournalComputers
Journal citation14 (2), p. 49
PublisherMDPI AG
ISSN2073-431X
Digital Object Identifier (DOI)https://doi.org/10.3390/computers14020049
Official URLhttps://www.mdpi.com/2073-431X/14/2/49
Publication dates
Online04 Feb 2025
Publication process dates
Accepted22 Feb 2025
Deposited13 Feb 2025
Publisher's version
License
File Access Level
Open
Output statusPublished
Additional information

Publications router.

Permalink -

https://repository.canterbury.ac.uk/item/9q4z2/analysing-cyber-attacks-and-cyber-security-vulnerabilities-in-the-university-sector

Download files

Publisher's version
computers-14-00049.pdf
License: CC BY 4.0
File access level: Open

  • 30
    total views
  • 26
    total downloads
  • 19
    views this month
  • 21
    downloads this month

Export as

Related outputs

Digital policing
Stephens, P. and Bradbury, P. 2024. Digital policing. in: Wood, D., Dickens, T., Bradshaw, S., Parker-McLeod, J. and Davis, C. (ed.) Blackstone's Handbook for Policing Students 2024 Oxford Oxford University Press. pp. 280-293
Is the digital forensic tool user interface broken?
Werb, D. and Stephens, P. 2022. Is the digital forensic tool user interface broken?
Cybercrime
Stephens, P. and Brady, E. 2022. Cybercrime. in: Wood, D., Bradshaw, S., Dickens, T., Parker-McLeod, J., Simpson, F. and Weaver, G. (ed.) Blackstone's Handbook for Policing Students 2023 Oxford University Press.
The future of policing cybercrime: Reflections on the Strategic Review of Policing in England and Wales
Stephens, P. 2022. The future of policing cybercrime: Reflections on the Strategic Review of Policing in England and Wales .
Analysis of the ‘Open Source Internet Research Tool’: a usage perspective from UK law enforcement
Williams, J. and Stephens, P. 2020. Analysis of the ‘Open Source Internet Research Tool’: a usage perspective from UK law enforcement. in: Clarke, N. and Furnell, S. (ed.) Human Aspects of Information Security and Assurance 14th IFIP WG 11.12 International Symposium, HAISA 2020, Mytilene, Lesbos, Greece, July 8–10, 2020, Proceedings Springer.
Preventing digital crime
Bennett, D. and Stephens, P. 2016. Preventing digital crime. in: Bryant, R. (ed.) Policing Digital Crime New York Routledge. pp. 63-82
The effectiveness of policing cybercrime
Stephens, P. 2018. The effectiveness of policing cybercrime.
Application of problem based learning – Cybersecurity
Irons, A., Lallie, H., Thomas, P. and Stephens, P. 2017. Application of problem based learning – Cybersecurity.
Problem-based learning in cybersecurity at CCCU
Stephens, P. 2016. Problem-based learning in cybersecurity at CCCU.
OSIRT: a tool for law enforcement research and investigation
Williams, J. and Stephens, P. 2015. OSIRT: a tool for law enforcement research and investigation.
Open source Internet research tool
Williams, J. and Stephens, P. 2015. Open source Internet research tool.
Resourcing computer forensics courses
Stephens, P. and Humphries, G. 2014. Resourcing computer forensics courses.
Policing digital crime
Bryant, R., Bryant, R., Bennett, D., Day, E., Kennedy, I. and Stephens, P. Bryant, R. and Bryant, R. (ed.) 2014. Policing digital crime. Farnham Ashgate.
Quantifying the problem of live data forensics
Stephens, P. and Quay-Ross, A. 2013. Quantifying the problem of live data forensics.
Cutting the costs of cybercrime forensics training without cutting corners
Stephens, P. 2013. Cutting the costs of cybercrime forensics training without cutting corners.
An evaluation of Linux Cybercrime Forensics courses for European law enforcement
Stephens, P. 2012. An evaluation of Linux Cybercrime Forensics courses for European law enforcement. in: Clarke, N. and Furnell, S. (ed.) Proceedings of the Sixth International Symposium on Human Aspects of Information Security & Assurance (HAISA 2012) Plymouth University. pp. 119-128
Employability from computer forensics programmes
Irons, A. and Stephens, P. 2011. Employability from computer forensics programmes.
The challenges of live data forensics
Stephens, P. and Irons, A. 2011. The challenges of live data forensics.
What is the best approach for providing Cybercrime Education for Law Enforcement (LE)?
Stephens, P. 2011. What is the best approach for providing Cybercrime Education for Law Enforcement (LE)?
What can a computer forensics examiner learn from an ethical hacker?
Stephens, P. and Stock, G. 2008. What can a computer forensics examiner learn from an ethical hacker?
Why should we be teaching Linux forensics?
Stephens, P. 2008. Why should we be teaching Linux forensics?
An analysis of the accuracy and usefulness of Vinetto, Pasco and Mork.pl
Stephens, P. and Childs, D. 2008. An analysis of the accuracy and usefulness of Vinetto, Pasco and Mork.pl.
Group-based assignments in computing courses
Stephens, P. and Stock, G. 2008. Group-based assignments in computing courses.
A usability analysis of autopsy forensic browser
Bennett, D. and Stephens, P. 2008. A usability analysis of autopsy forensic browser.
Dealing with contract cheating: policies and procedures
Stephens, P. and Edgar-Nevill, D. 2008. Dealing with contract cheating: policies and procedures.
Teaching European law enforcement forensic scripting using bash
Stephens, P. 2009. Teaching European law enforcement forensic scripting using bash.
Teaching ''Linux as a Forensic Tool'' (Online) to European Law Enforcement
Stephens, P. 2009. Teaching ''Linux as a Forensic Tool'' (Online) to European Law Enforcement.
Cybercrime training versus computer forensics education
Stephens, P. 2007. Cybercrime training versus computer forensics education.
Cybercrime investigation training and specialist education for the European Union
Stephens, P. and Induruwa, A. 2007. Cybercrime investigation training and specialist education for the European Union.
Developing cybercrime forensics: the growing pains of a new discipline
Edgar-Nevill, D. and Stephens, P. 2007. Developing cybercrime forensics: the growing pains of a new discipline.
Teaching the police to program: building a simple IDE to teach shell scripting and reduce syntax errors
Stephens, P. 2010. Teaching the police to program: building a simple IDE to teach shell scripting and reduce syntax errors.
Developing cybercrime forensics: the growing pains of a new discipline
Stephens, P. and Edgar-Nevill, D. 2008. Developing cybercrime forensics: the growing pains of a new discipline. in: Petratos, P. and Dandapani, P. (ed.) Current Advances in Computing, Engineering and Information Athens Athens Institute for Education and Research. pp. 105-114
The future of forensic computing: challenges, techniques and tools
Stephens, P. 2008. The future of forensic computing: challenges, techniques and tools. in: Petratos, P. and Marcoulides, G. (ed.) Recent Advances in Computing and Management Information Systems Athens Athens Institute for Education and Research. pp. 55-62
Plastic card crime
Bryant, R. and Stephens, P. 2008. Plastic card crime. in: Bryant, R. (ed.) Investigating Digital Crime Chichester Wiley. pp. 133-151
Identity and identity theft
Marshall, A. and Stephens, P. 2008. Identity and identity theft. in: Bryant, R. (ed.) Investigating Digital Crime Chichester Wiley. pp. 179-193
Digitalisation and crime
Bryant, R. and Stephens, P. 2008. Digitalisation and crime. in: Bryant, R. (ed.) Investigating Digital Crime Chichester Wiley. pp. 211-230
Encryption
O'Reilly, D. and Stephens, P. 2008. Encryption. in: Bryant, R. (ed.) Investigating Digital Crime Chichester Wiley. pp. 97-120
IPR and technological protection measures
Stephens, P. 2008. IPR and technological protection measures. in: Bryant, R. (ed.) Investigating Digital Crime Chichester Wiley. pp. 121-131
Countering cybercrime
Edgar-Nevill, D. and Stephens, P. 2008. Countering cybercrime. in: Bryant, R. (ed.) Investigating Digital Crime Chichester Wiley. pp. 79-96
Digital investigation as a distinct discipline: a pedagogic perspective
Irons, A., Stephens, P. and Ferguson, R. 2009. Digital investigation as a distinct discipline: a pedagogic perspective. Digital Investigation. 6 (1-2), pp. 82-90. https://doi.org/10.1016/j.diin.2009.05.002
IT forensics: training or education?
Edgar-Nevill, D. and Stephens, P. 2007. IT forensics: training or education? Infosecurity. 4 (7), pp. 12-13. https://doi.org/10.1016/S1754-4548(07)70166-3
An analysis of the accuracy and usefulness of Vinetto, Pasco and Mork.pl
Childs, D. and Stephens, P. 2009. An analysis of the accuracy and usefulness of Vinetto, Pasco and Mork.pl. International Journal of Electronic Security and Digital Forensics. 2 (2), pp. 182-198. https://doi.org/10.1504/IJESDF.2009.024902
A cognitive walkthrough of Autopsy Forensic Browser
Bennett, D. and Stephens, P. 2009. A cognitive walkthrough of Autopsy Forensic Browser. Information Management & Computer Security. 17 (1), pp. 20-29. https://doi.org/10.1108/09685220910944731