Exams cancelled after Northumbria University cyber attack
"IT difficulties" force clearing hotline and student portal offline
Northumbria University has been hit with a cyber attack that has caused "significant operational disruption" to its IT systems.
An investigation into the incident is "still at an early stage" and the method of the attack is still unknown.
The university's clearing service has been affected by the attack, with applicants being directed away from a hotline to an alternative email address. A number of exams scheduled for this week have also been postponed.
In a letter to students, professor Peter Francis, the deputy vice-chancellor, confirmed that Northumbria Univerity had brought in external security specialists to mitigate any damage to its systems. The university has also informed the Northumbria police and the Information Commissioner's Office, as a precaution, he said.
Students were warned of "some IT difficulties" in a tweet posted on Friday, which was shortly after followed by a second post warning that the clearing hotline, used for students attempting to enrol on alternative courses after receiving their grades, was no longer able to take calls.
In a final tweet on Friday, the university announced that exams due to take place that day would be resecheduled.
"Northumbria is now in a position to advise that we have been the victim of a cyber incident," Francis said. "The investigation is still at an early stage and we are working to recover the university's systems and services as safely as possible in order to minimise the impact on you all."
Sign up today and you will receive a free copy of our Future Focus 2026 report - the leading resource for IT decision-maker insight on priorities and investment areas in AI, security and more.
As a result, students will not be able to access their online student portal and other platforms for the remainder of the week as the university attempts to restore its network and connected services.
Although there are few details of the attack method, 2020 has already seen a rise in the number of universities targeted by ransomware or data breaches. In July, cloud service provider Blackbaud had to notify its customers of a data breach, which included universities in the UK, US and Canada.
"While the exact details of this attack are yet to be revealed, universities receive the largest number of targeted phishing emails, which trick the recipient into clicking a malicious link or transferring funds," said Dave Palmer, director of technology at Darktrace.
"Attackers are constantly innovating and they will only get more sophisticated. Universities typically have complex and porous digital systems so attackers can often find their way back in repeatedly to cause more harm."
Bobby Hellard is ITPro's Reviews Editor and has worked on CloudPro and ChannelPro since 2018. In his time at ITPro, Bobby has covered stories for all the major technology companies, such as Apple, Microsoft, Amazon and Facebook, and regularly attends industry-leading events such as AWS Re:Invent and Google Cloud Next.
Bobby mainly covers hardware reviews, but you will also recognize him as the face of many of our video reviews of laptops and smartphones.
-
Palo Alto Networks CEO Nikesh Arora says it’s up to workers to adapt to AINews The Palo Alto Networks chief said the company doesn’t employ punitive measures when it comes to embracing AI, but it is pushing for a more ‘savvy’ workforce
-
Microsoft Surface Laptop 8 (13.8in) reviewReviews The business model of the Surface Laptop 8 is a Panther Lake beast with long battery life and a privacy display
-
Working with the enemy: Ransomware negotiator-turned cyber criminal jailed after working with hackers to extort clientsNews Angelo Martino was supposed to be negotiating on behalf of victims, but was secretly working for ransomware operators
-
Hackers are posing as Interpol to target small businesses – here's what you need to knowNews Small businesses are warned to think twice before clicking on links
-
‘Every hour ransomware goes undetected drastically increases its potential blast radius’: Hackers are breaching networks and laying low for longer – and nearly half of firms don’t realize until data is stolenNews An ExtraHop survey found more intrusions are going undetected, leading to longer dwell times
-
Ransomware cartels are fragmenting into volatile splinter groups, warns Met Police cyber chiefNews Commoditized "cyber crime bazaars" and AI data mining are forcing law enforcement to rewrite its playbook
-
New ransomware threat group, The Gentlemen, has become one of the most active ransomware operators, accounting for 10% of all attacksNews NTT researchers warn that the RaaS group is leveraging SystemBC malware to establish covert tunnelling, evade detection, and support rapid lateral movement across enterprise environments
-
Instructure chose to a pay ransom following the Canvas cyber attack – research shows more than half of security leaders would follow suitAnalysis Opting to pay ransoms creates huge risks for enterprises – you’re relying on the word of criminals
-
Ransomware negotiator sentenced for role in major cyber crime groupNews Deniss Zolotarjovs was a key player in a group associated with Conti
-
Threat actors ditch ‘spray and pray’ attacks in shift to targeted exploitationNews A dip in ransomware volumes points to a more targeted approach focused on vulnerability exploitation