Queen Mary University of London has been forced to apologise after a cyberattack led to members of the public receiving offensive emails from the institution.
A spam bot attack on one of?the university’s systems sent details about courses to random email addresses it harvested from across the internet.
“Stupid cocksucker, here’s your undergraduate prospectus download!” said one of the emails, according to??posted online.
The university wrote to all those affected, reassuring them that the issue had been contained and no data had been compromised.
Thomas Lancaster, principal teaching fellow in computing at Imperial College London, told?Times Higher Education?that the issue was probably caused by an insecure automated form on the university website where prospective students can sign up with a name and email and get access to a prospectus.
He said this will be treated “more as a joke than as totally malicious” but warned that universities could suffer reputational damage from such attacks.
“Universities need to monitor for offensive requests, repeat requests from the same location, an unexpected volume of requests and the like, as well as to close off insecure email channels.
“If there’s one email vulnerability, there are likely more. Think full-blown spam attacks, seemingly coming from a university.”
The incident is?the latest example of UK universities being affected by cyberattacks. It comes just a week after servers at Nottingham Trent University were hit by a cyberattack, forcing all student and staff passwords to be reset.
Lancaster warned that universities are at real risk of cyberattacks, with hackers finding ways to?access university systems, leak data, encrypt systems and hold universities to ransom.
“These small exploits are often the gateways to much larger vulnerabilities,” he added.
A QMUL spokesperson said: “We have successfully resolved an issue generated by a spam bot using email addresses that had been harvested from the internet.
“The data we hold has not been compromised. We have apologised to anyone affected.”
请先注册再继续
为何要注册?
- 注册是免费的,而且十分便捷
- 注册成功后,您每月可免费阅读3篇文章
- 订阅我们的邮件
已经注册或者是已订阅?
