Universities and research centres in the UK are rolling out an extra layer cyber security protection against ransomware attacks.

Around 50 per cent of ransomware incidents in the sector are due to attackers exploiting Remote Desktop Protocol (RDP), which is a common way for users to access computers or servers from another device.

Jisc, a not-for-profit digital agency focused on education and research, will block access to RDPs from outside the UK from March 2023. Only inbound traffic will be allowed to connect via RDP.

The change follows consultations with the higher education sector and changes in policies guiding the national research and education network, called Janet.

Commenting on the news Dr John Chapman, who is Jisc’s director of information security policy and governance, said: “The use of ransomware against our sector and globally has ramped up over the past couple of years and some attacks against colleges and universities have been devastating.”

He added: “Organisations can still opt out of restrictions to specific IP addresses if they wish to, but they must accept the greater risk of a serious cyber security incident. Controlling access to a known attack vector will help protect the sector as a whole against this type of attack.”

Share Story: