Decoding Cyber Threats in Education: A Deep Dive into TTPs using MITRE ATT&CK

Speakers

Lisa Deery - HEAnet
Olga Spillane - HEAnet

In an era where educational institutions are prime targets for cyberattacks, safeguarding digital assets has never been more critical. This presentation delves into the proactive cybersecurity measures adopted by Tech-U, a fictional university representative of the unique challenges faced by colleges and research institutions. We explore the process of threat profiling, highlighting the identification of relevant threat actors and their tactics, techniques, and procedures (TTPs). By utilizing the MITRE ATT&CK Navigator, we demonstrate how institutions can effectively map their existing mitigations against identified threats, revealing gaps in their defences and prioritizing actionable strategies. Our research emphasizes the importance of adaptability, evidence-based decision-making, and ongoing updates to maintain relevance in a constantly evolving threat landscape. Join us as we empower educational institutions with practical insights and strategies to protect their operations, safeguard their intellectual property, and ensure the privacy and safety of their students and staff.