Top five cybersecurity issues for higher education
Author: Emeritus Professor Greg Whateley
September 2025
The higher education sector in Australia faces increasing cybersecurity challenges, with universities and colleges frequently targeted by cybercriminals. Sensitive research data, personal student information, and critical infrastructure make these institutions prime targets. Inspired by a recent book by Dr Monjur Ahmed – Cyber Security Leadership – led me to consider what I thought are the top five (5) cybersecurity threats to higher education (not in any particular order).
See – Cyber Security Leadership (2025) - Cyber Security Leadership
Phishing and social engineering attacks
‘Phishing’ remains one of the most prevalent threats, with attackers sending deceptive emails to staff and students in an attempt to steal login credentials or distribute malware. You would be surprised how often this happens. Social engineering tactics are becoming more sophisticated (no surprise) often leveraging university/college branding (for example) or urgent messages to trick recipients into taking harmful actions.
Ransomware attacks
‘Ransomware’ incidents have also surged within the sector, with attackers encrypting institutional data and demanding payment for its release. These attacks can (and do) disrupt essential services, halt research, and put student information at risk. Recovery can be costly and time-consuming - making prevention and regular backups critical.
Data breaches and unauthorised access
Universities hold vast amounts of sensitive data including - intellectual property, research findings, and personally identifiable information of students and staff. Weak or reused passwords, unpatched systems, and insufficient access controls can all lead to data breaches, causing reputational damage and potential legal consequences.
Insecure remote learning platforms
The rapid adoption of online learning tools has expanded the attack surface for cybercriminals. Vulnerabilities in video conferencing platforms, learning management systems (LMS), and third-party education apps can be exploited to gain unauthorised access, eavesdrop on classes, or disrupt learning activities.
Insider threats
Apparently, not all threats come from outside the institution. Disgruntled employees, careless staff, or students with access to sensitive systems can inadvertently (or deliberately) compromise security. Insider threats can be difficult to detect and may involve data theft, sabotage, or the accidental sharing of confidential information. To my mind this is the most disappointing threat in so many ways.
Australian higher education institutions must remain vigilant and proactive in their cybersecurity efforts. Regular staff and student training, robust security policies, and up-to-date technical controls are essential to mitigating these top risks and protecting valuable resources in the digital age.
Emeritus Professor Greg Whateley is currently Chief Executive and Executive Dean at the Australian Guild of Education (Melbourne).