Cyber security threat intelligence services will help build strong defences

Cyber security threat intelligence services will help build strong defences

As cyber security specialists across the sector will know, understanding the enemy is crucial.

What type of threats are most prevalent right now? What are the indicators of compromise and what technical measures need actioning to prevent attacks?

Right now, the UK education sector - and connected organisations across the globe - are dealing with an unprecedented wave of ransomware attacks.

To help the sector deal with this immediate and very serious threat, and to support institutions to build strong defences for the future, Jisc has brought forward significant investment.

This money has firstly bolstered our ability to defend the national research and education network, Janet, on which all our members - UK colleges, universities and researches centres - depend.

Secondly, we are widening the scope of our already significant threat intelligence gathering and sharing activity that’s conducted with security agencies in the UK and overseas.

As soon as set-up and testing procedures are complete, we will be launching a service to monitor the dark web for leaked credentials and other means of accessing systems that are being sold illegally. Members will receive alerts through an automated system

This is timely, since we know that ransomware criminals have successfully used stolen usernames and passwords to break into and disable members’ computer systems, sometimes with devastating results.

We are also in the process of acquiring a vulnerability and potential compromise alerting service that we expect to be ready to offer to members later this year.

A threat intelligence sharing group for Jisc members is being set up to complement the global threat intelligence partnership that Jisc instigated and set up in May, with peer organisations in the US, Australia and Canada.

To hear more about cyber security from sector experts, sign up for the free-to-attend Jisc’s security conference (9-11 November).