Students at the University of Sunderland are still unable to access online lectures following a suspected cyber attack earlier this week.
Telephone lines, IT and email systems, as well as the university’s website and mobile application remain inaccessible.
Staff and students are also unable to communicate over Microsoft Teams or the university’s Canvas virtual learning environment (VLE), which are used to access coursework and feedback, or submitting assignments.
The university campus remains open, but students are unable to use many on-site services, including WiFi and printing. Students are also unable to access the library PCs, loan a laptop, or read ebooks and online journals.
The “extensive IT issues” have “all the hallmarks of a cyber attack”, the university announced in a statement, adding that it is cooperating “with a number of agencies, including the police, to find out what exactly has happened and the extent of the problems”.
With online classes cancelled, students are being urged to attend in-person lectures, bringing the university’s hybrid learning approach to a halt.
Steve Bradford, SVP EMEA for cloud security provider SailPoint, told IT Pro that the hybrid approach makes students dependent on “the online world” more than ever before.
RELATED RESOURCE
“But cyber threats pose a major risk to this – as we already see with the suspected attack on Sunderland University. In the space of a few minutes, threat actors had the power to bring down websites and IT systems, causing unprecedented disruption,” he said.
Hackers could have potentially gained entry using the influx of new students in the last few weeks, as the university returned to campus late last month.
“With many new students starting at once and acquiring a range of logins, and many universities migrating to the cloud environment, higher education institutions need to be extra vigilant here,” he said, adding that educational institutions, including universities, should ensure they’re in line with “best practices for cyber security”.
The news of the disruption comes weeks after Howard University in Washington DC was hit by a ransomware attack which forced it to cancel classes for two days.
-
Business leaders are having a crisis of confidence over data literacyNews A Salesforce survey reveals business leaders don't trust their data, or their ability to make the most of it
-
Frustration as MITRE CVE program funding expiresNews The cyber database is invaluable to security teams the world over, helping flag the most urgent vulnerabilities
-
Cleo attack victim list grows as Hertz confirms customer data stolen – and security experts say it won't be the lastNews Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
‘Phishing kits are a force multiplier': Cheap cyber crime kits can be bought on the dark web for less than $25 – and experts warn it’s lowering the barrier of entry for amateur hackersNews Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Healthcare systems are rife with exploits — and ransomware gangs have noticedNews Nearly nine-in-ten healthcare organizations have medical devices that are vulnerable to exploits, and ransomware groups are taking notice.
-
Alleged LockBit developer extradited to the USNews A Russian-Israeli man has been extradited to the US amid accusations of being a key LockBit ransomware developer.
-
February was the worst month on record for ransomware attacks – and one threat group had a field dayNews February 2025 was the worst month on record for the number of ransomware attacks, according to new research from Bitdefender.
-
CISA issues warning over Medusa ransomware after 300 victims from critical sectors impactedNews The Medusa ransomware as a Service operation compromised twice as many organizations at the start of 2025 compared to 2024
-
Warning issued over prolific 'Ghost' ransomware groupNews The Ghost ransomware group is known to act fast and exploit vulnerabilities in public-facing appliances
-
The Zservers takedown is another big win for law enforcementNews LockBit has been dealt another blow by law enforcement after Dutch police took 127 of its servers offline
