"Exploitation Accounts For 29% of Education Sector Attacks"

In a new report, security researchers at Critical Start claimed that the education sector is a prime target for threat actors, with 29% of attacks originating from vulnerability exploitation and 30% from phishing campaigns on K-12 schools in 2023.  Another key finding by the researchers is the increasing use of Quick Response (QR) codes in phishing attacks.  The researchers noted that in these attacks, cybercriminals disguise themselves as Microsoft security notifications and embed QR codes within PNG images or PDF attachments to deceive victims.  The researchers also found that ransomware groups are collaborating more extensively than previously thought, sharing tactics and procedures in greater detail.  The researchers believe this cooperative approach among threat actors emphasizes the evolving nature of the cybercrime landscape.

Infosecurity reports: "Exploitation Accounts For 29% of Education Sector Attacks"