Education Sector was the Hardest Hit by Ransomware in 2020

Education, together with retail, faced the highest level of ransomware attacks during 2020, with 44 percent of organizations hit (compared to 37 percent across all industry sectors), as per the latest ‘Sophos State of Ransomware in Education 2021’ report which looks at the extent and impact of ransomware attacks on educational institutions worldwide during 2020.

According to the report findings, the financial impact of a ransomware attack in 2020 was crippling for educational institutions. The total bill for rectifying a ransomware attack in the education sector, considering downtime, people time, device cost, network cost, lost opportunity, ransom paid, and more, was, on average, $2.73 million – the highest across all sectors surveyed, and 48 percent above the global average.

The report added that over half (58 percent) of the education organizations hit by ransomware said the attackers had succeeded in encrypting their data. Over a third (35 percent) of those with encrypted data gave in to the attackers’ demands and paid the ransom. Only the energy, oil/gas and utilities (43 percent), and local government (42 percent) sectors were more likely to pay.

The average ransom payment was $112,435 (lower than the global average of US$170,404). However, those who paid recovered on average only around two-thirds (68 percent) of their data, leaving almost a third inaccessible; and just 11 percent got all their encrypted data back.

Of those institutions that were not hit with ransomware last year (55 percent of respondents), the majority (61 percent) expect to be targeted in the future. The main reasons given for this are that cyberattacks are now so sophisticated (46 percent) and prevalent (42 percent) that they are almost impossible to stop.

“The education sector has long been an attractive target for cyber-attackers,” said Chester Wisniewski, Principal Research Scientist, Sophos. “The budgets for IT and cybersecurity can be very tight, with stretched IT teams battling to protect what is often outdated infrastructure using limited tools and resources, coupled with risky end user behaviors, such as downloading pirated software. All this increases exposure to risk in any year, but in 2020 the pandemic happened, and education establishments had to switch, with short notice, to virtual learning environments, with very little time to think about security or provide basic cybersecurity training for all the newly remote users. This significantly increased the sector’s vulnerability and adversaries were quick to seize the opportunity, leaving victims with the huge financial impact of having to rebuild IT infrastructure from scratch.”

The Sophos State of Ransomware in Education, 2021, survey polled 5,400 IT decision makers, including 499 education IT managers, in 30 countries across Europe, the Americas, Asia-Pacific and Central Asia, the Middle East, and Africa.

APAC’s first and one-of-a-kind news capsule,CXOTV.news exclusively provides all relevant IT industry reports and information to you in quick bytes.

Facebook Twitter Youtube Google-plus Linkedin

Categories

Archive
Our Services

Our Contact

TECHPLUS MEDIA PTE LTD.
68 Circular Road
02-01 Singapore – 049422

Contact : +65 94278359/ 81505361

Sales : sales.apac@cxotv.news

Editorials – content.apac@cxotv.new

© 2023 All Rights Reserved. Techplus Media PTE Ltd.

Scroll to top Do NOT follow this link or you will be banned from the site!