The top 20 universities based in the U.S. are failing to implement proper DMARC protections and policies, opening the door for fraudsters to spoof their email domains and convincingly impersonate them at a time when students are likely expecting to receive a wealth digital communications related to back-to-school instructions, researchers warn.

In particular, students and faculty members may be looking out for important updates regarding how educational institutions will handle the challenges of Covid-19.

“Over the course of the pandemic, we’ve seen hackers capitalize on opportune moments in their phishing attacks," Tim Sadler, CEO and co-founder of Tessian, told SC Media. "Now, as schools communicate their back-to-school plans and the safety measures they're taking to make students feel comfortable returning to campus, it’s likely that hackers will take advantage of this moment too. With students and staff eagerly anticipating news and updates, the influx of communications offers a ripe opportunity for hackers to launch phishing attacks impersonating university administrators, professors or even fellow students.”

Please register to continue.

Already registered? Log in.

Once you register, you'll receive:

  • News analysis

    The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.

  • Archives

    Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.

  • Daily Newswire

    SC Media’s essential morning briefing for cybersecurity professionals.

  • Learning Express

    One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.