University of Duisburg-Essen ransomware attack


On the ransomware attack that hit the University of Duisburg-Essen, it’s crucial, and should be praised, that the University also refused to pay the ransom demanded by Vice Society – and an action that should be followed by every other company when facing a ransomware extortion. As well as not paying ransoms, organisations should implement technologies and security controls that don’t just detect potential intrusion, or lateral movement, but also protects data should the threat not be eliminated earlier, such as the use of file encryption.

This is not Vice Society’s first ransomware attack on the education sector – in 2022 they were responsible for attacks on the Cincinnati State Technical and Community College, the Medical University of Innsbruck, and the Los Angeles Unified school district. Our research also shows that Vice Society’s market share in ransomware attacks per group has increased from 0% in 2020 to 2% in 2021.