Subj : Universities are struggli
To   : All
From : Mike Powell
Date : Wed May 14 2025 07:59 am

Universities are struggling with document security and hackers are taking
advantage

Date:
Wed, 14 May 2025 08:50:20 +0000

Description:
Almost 1 in 4 UK universities are cutting staff, slashing budgets, or making
redundancies. The last thing they need right now is a cyberattack. But heres
the problemtheyve never been more vulnerable.

FULL STORY
======================================================================

Universities are already under immense pressure from financial constraints,
regulatory requirements, and accountability demandsthe last thing they need
is a cyberattack. Unfortunately, the standard approach to document management
has left many of them more vulnerable than ever. With AI making cyberattacks
more prolific and effective, a single misplaced document could have
devastating consequences. And thats just the tip of the iceberg.

Why? Cybercriminals know that universities often lack robust cybersecurity
measures. In fact, in 2024, a staggering 97% of universities experienced a
cyber-attack, leading to financial losses, reputational damage, and
disruptions to academic activities. In other words, attackers know where
universities are most vulnerableand theyre exploiting those weaknesses like
never before.

This article will explore how poor document management practices exacerbate
these risks, how modern solutions can reduce cyber threats, and the critical
steps universities must take to protect themselves.

When you dont get with the times

Many universities operate with woefully out-of-date IT systems. Its not
uncommon for staff to bypass the whole system and work with reams of paper on
their desks. In fact, a new report from the Higher Education Policy Institute
says that universities need an army of IT staff to keep systems from
crumbling under their own weight. Not only is this a burden on staff, but it
increases cyber risk.

That same report says that document management is one of the most significant
failure points.

Consider this: internal servers are unreliable, so staff turn to alternative
solutions. Personal email accounts become makeshift storage because
institutional servers cant be trusted. Physical documents, though tangible,
are easily misplaced or lost in transitexposing confidential data and
creating GDPR compliance risks. Whether its application forms, research
papers, or emails, without proper security measures, every document is a
potential vulnerability.

Unsurprisingly, humans are often the weakest link. A hastily scribbled
password on a sticky note, a list of student names and addresses that falls
out of a plastic binder, or a shared drive that is open to anyone with a link
all represent a way into university servers for enterprising cybercriminals.
Think about it: when thousands of students and faculty members are sending
documents to and from, its essential that this is underpinned by good
security systems.

Another growing headache for universities is shadow AI. When employees
struggle with outdated systems while managing increasing workloads, they turn
to any tool that boosts efficiencyeven if its unsanctioned or unsafe. Take
the professor using ChatGPT to assess one of hundreds of essays. Hidden
within a student essay might be personally identifiable information (PII).
Meanwhile, freely available open source large language models (LLMs), such as
Chinas DeepSeek, have been altered to contain malicious code implanted before
download.

And once cyber criminals have access to a university server, they can
observe, explore and map the network and its users. Undetected and free to
roam, they can seek out and obtain login credentials that gives them access
to other parts of the network. They may also set up backdoors so that they
can regain access once theyve enacted their plan.

Document management cant be overlooked

With risks like theseand with AI and machine learning becoming more advanced
and widespreadcybercriminals have more tools than ever to target
universities. AI tools not only lower the technological barrier for
attackers, enabling even less-skilled individuals to craft convincing
phishing emails or automate malicious code generation, but it also
facilitates deepfake audio and video, as well as adaptive malware designed to
evade detection.

More importantly, it accelerates the attack cycle. And cybercriminals know
that universities are often poorly equipped to handle a barrage of attacks.
According to the UK Governments 2024 Cyber Security Breaches Survey, around
60% of UK universities had suffered a cyber breach in the past yearmore than
the typical large businessand this was due to inadequate cyber strategies.

Proper document management systems can mitigate many of these risks. These
tools store and manage documents through a central, cloud-based server,
providing a secure environment for sensitive information. They also
facilitate the digitization of physical documents, making them easier to
manage. By automatically generating metadata for stored content, they enhance
searchability and prepare information for responsible AI and automation. Most
importantly, they enforce access rights, maintain audit trails, and support
regulatory compliance, reducing the risk of data breaches.

In other words, they ensure the right person has the right access to the
right documents and the right time. Some modern document management tools
have AI built in, making it easier to analyze and extract insights from
university data. Additionally, having AI tools within a secure environment
helps reduce the risk of Shadow AI.

Universities of the future

Document management systems help universities prepare for the future. Data
indexing and classification are essential for AI and automation. However,
these processes are only as effective as the data they are built uponmaking
it crucial to establish a strong foundation for growth.

Employees also appreciate having technology that works. Cumbersome document
management systems can be a drain on efficiency, impacting productivity and
distracting students and staff from meaningful work. With a well-implemented
document management system, staff can begin automating processessuch as
student onboardingallowing them to focus on what truly matters, engaging with
students and ensuring they settle in.

Imagine a world where admissions teams no longer struggle with managing
electronic signatures or distributing onboarding documentation. Lecturers,
too, can automate aspects of grading and reduce time spent on document
management, allowing them to prioritize teaching.

As AI and machine learning become more developed, universities will more
clearly recognize the ROI of implementing a document management system,
because they have the foundations on which to build. Content management
systems are also good because staff can drive their own automation workflows
through APIs and low-code applications  by leveraging ready-made templates
and automation solutions from community- and vendor-driven marketplaces. This
goes a long way in helping universities navigate the pressures they face
today.

Of course, implementing a document management system requires an initial
investment. However, these systems improve over time, and the reputational
and financial risks associated with a serious cyberattack can be
significantly reduced. Ultimately, universities can fund these improvements
by reallocating savings from reduced manual processes and avoiding the costly
consequences of a data breach.

The time to update was yesterday

Universities can no longer afford to ignore document management, especially
as competitors modernize and make better use of artificial intelligence and
machine learning. These threats will only grow over time. By addressing these
issues now, universities can save on costs, boost employee and student
morale, and refocus on what truly matters: education.

This article was produced as part of TechRadarPro's Expert Insights channel
where we feature the best and brightest minds in the technology industry
today. The views expressed here are those of the author and are not
necessarily those of TechRadarPro or Future plc. If you are interested in
contributing find out more here:
https://www.techradar.com/news/submit-your-story-to-techradar-pro

======================================================================
Link to news story:
https://www.techradar.com/pro/universities-are-struggling-with-document-securi
ty-and-hackers-are-taking-advantage

$$
--- SBBSecho 3.20-Linux
* Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)

You are viewing proxied material from vert.synchro.net. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.