cyber security certifications in Malaysia.

Strikes by Ransomware on Educational
Institutions have Increased
The education sector is not exempt from cyberattacks, nor is it any other
business or sector. Unfortunately, ransomware is a particular form of cyberattack
that is affecting an increasing number of educational organizations and
school districts.
If we are talking about the cyber-attacks in Malaysia so, this country also
experienced numerous cyberattacks just in the past year. These include a
payment gateway data breach and the theft of 22.5 million people's personal
information from a national registry.
As we know Malaysia is not highly educated people as cyber security experts
but after the repetition of attacks activities government prepares cyber
security professionals after completing the concerned cyber security
certifications in Malaysia.
This ransomware is described as "a form of malware intended to encrypt files
on a device, making any files and the systems that depend on them unusable"
by the Cybersecurity and Infrastructure Security Agency. Then, malicious
players demand a ransom in return for the decryption.
Ransomware, one of the biggest cybersecurity threats, harms a school's image
as well as its financial standing. According to Forbes, a ransomware assault

typically costs $112,000 in ransom payments and an astounding $2.7 million
for the attack's overall cost. Additionally, the recovery period following a
ransomware attack can frequently last days, weeks, or even months.
Recent Ransomware Strikes in the Education
Sector
Attackers using modern ransomware target K–12 institutions as well as
educational initiatives, in addition to colleges and universities.
Schools in Michigan's Jackson County and Hillsdale County were shut down for
several days in November 2022 as a result of a ransomware assault. The Little
Rock, Arkansas school district allegedly chose to pay the $250,000 ransom
demanded by hackers in December 2022 to put an end to the district's attack.
According to a Comparitech map of ransomware attacks on American higher
education institutions from 2018 to mid-May 2022, "954 separate schools and
colleges were possibly affected," with the total estimated cost of the attacks
being around $3.56 billion.
Even Lincoln College's closure in 2021—the institution had been open since
1865—was brought on by a ransomware assault. Other organizations that
were subjected to major ransomware attacks in 2022 include Midland
University, Ohlone Community College, and North Carolina AT&T State
University.
Reasons for the Increase in Ransomware
Attacks on the Education Industry
Due to COVID-19, remote and hybrid learning became more prevalent, which
increased total cyber threats. While ransomware incidents impact all types of
businesses and organizations, school districts and higher education institutions
are increasingly being targeted. This is especially concerning because it has an
impact on students and young adults who are just starting their jobs.
Additionally, the highly vulnerable group of teachers, students, and children
whose private data is at risk.

In contrast to financial institutions or bigger businesses, school districts do not
have "the sophisticated defenses and resources," which is one of the main
causes, according to a Verizon report. "Older IT systems found in schools are
more prone to infiltration. Employees are more susceptible to phishing emails
because of the restricted time they have for training. Additionally, hundreds of
kids there use laptops.
In addition, educational organizations like schools and universities hold a
variety of crucial personal data, including names, contact details, Social
Security numbers, and financial records.
The report continues, "Schools typically have few choices for data recovery
when they are attacked, making them more likely to give in to a ransom
demand. Additionally, they are under political pressure to act swiftly to
address the issue and have a pressing need to continue being open.
Afresh Challenge to Action
How Organizations & Schools Can Protect Themselves
On a national scale in the U.S., the Department of Education works with
government organizations like the Department of Homeland Security and the
Federal Bureau of Investigation to coordinate cybersecurity initiatives and

related advice for K–12 schools. However, the state or local school system is
largely responsible for education and training.
The following are some fundamental hygiene precautions that educational
organizations can take to prevent ransomware attacks:
• Restrict your use of services that are accessible via the Internet.
• Ensure special access is protected.
• Train pupils and staff in cybersecurity in a professional manner.
• Update software and internet-connected gadgets.
• Put multi-factor security into practice
Some universities, colleges, and even bigger school districts are employing
cybersecurity experts who can help them improve their cybersecurity maturity
and aid in preventing these kinds of attacks. For instance, a recent LinkedIn
search turned up more than 2,000 job listings in higher education linked to
cybersecurity.
Schools frequently choose remote and adaptable arrangements like those
provided by Cyber Management Alliance's Virtual Cyber Assistant service if
there isn't funding for a full-time cybersecurity specialist.
Additional Suggestions for Institutions, Colleges,
and Universities are Provided below:
Make an attempt to give cybersecurity education and prevention funding and
priority (personnel, training, etc.)
Invest in cyber-insurance
backup critical information
Install an antivirus or spyware protection software
Put virtual private networks into practice
Updating all programming and running systems is a good idea.
Adopt the philosophy of "being proactive, not reactionary."
Make a policy for the retention of student records.

Conclusion
Cyberattacks are more frequent in education, and they can have
serious, negative consequences. The good news is that more and
more schools, colleges, and university departments are realizing the
importance of hacking training and education.
Implementing best practices, prioritizing cybersecurity training and
awareness, prioritizing hiring the right personnel, and prioritizing
cybersecurity awareness are all straightforward but crucial steps that
will help keep education data and personal information private.
Read also: Cyber security training online course