Broadcast: News items

Cyber Security matters – #8 Account compromise

Posted on behalf of: Better Sussex

Last updated: Monday, 16 September 2024

A person wearing a yellow jumper working on a laptop

As part of our Cyber Security awareness campaign, we’ll be covering a new and important topic each month to help boost your knowledge and keep you and the University safe and secure.

This month, we explore the significant risks associated with compromised accounts and share practical tips on how to protect yourself and stop this happening to you.

What is a compromised account?

A compromised account happens when an account is accessed by an unauthorised user with login details (username and password). There are a number of ways this could happen, including:

Using a weak password that can be easily guessed

Failure to enable Multi-factor Authentication (MFA)

Keeping a plaintext log of usernames and passwords on your device

Falling for a phishing scam

Installing malicious software, such as spyware or viruses.

Usually, compromising an account is only the first step in a cyberattack. The second phase (where the attacker achieves their goal) is often the accessing of sensitive data and accounts or the installation of malware on a network.

How will I know if my account has been compromised?

It’s not always immediately obvious, but you can usually tell if your account has been compromised by looking out for unusual things taking place on your device. For example, if you see emails in your sent folder that you didn’t write, your passwords have been changed, or files and applications are being deleted without your knowledge.

Case study – the University of Manchester.

One click is all it takes. Only last year, June 2023, the University of Manchester was hit by a cyber-attack. Some of the university’s systems were accessed by an unauthorised party, resulting in data being copied by hackers. According to Jisc, “Core systems were impacted, disrupting the university’s ability to support its researchers, while interdependences with organisations like the NHS in Greater Manchester and beyond carried a potential risk to life.”

Once the hackers had access to the private data, they emailed students and staff, threatening to sell their personal data on the black market if the university did not meet their demands.

The University of Manchester worked with external bodies such as JISC, as well as the Information Commissioner's Office, the North West Organised Crime Unit and the National Cyber Security Centre to successfully resolve the cyber-attack. It took three months of intensive, round the clock work that summer to contain and eradicate the threat, recover important services and to start to rebuild.

Sources:BBC News, 21 June 2023, and JISC, 6 February 2024.

How can I minimise the risks?

You can stay safe by:

Setting up Multi-factor Authentication

Using strong passwords

Being on the lookout for scams – don’t click on links if you’re not sure where they come from, and never share your login details with anyone.

How to learn more 

Each month, we’ll be releasing a matching bitesize training via Proofpoint, our online learning platform, which will be emailed to you. This month’s training will arrive in your inbox on Tuesday 17 September.