Cyber risks are on the rise

25 Jun 2026

Take a moment to refresh your phishing awareness, understand the risks to your account, and explore practical steps and training that can help keep University systems and data secure. 

Several global service providers to universities have recently been hit with cyber-attacks, including Instructure, the company behind Canvas, our University’s e-learning system. Universities and their suppliers hold valuable information, so they are attractive targets for cyber criminals, and the effects of a breach can be very serious. 

Phishing is one of the most common ways attackers try to gain access. If just one account is compromised, it can be used to move through systems to access sensitive data or services that can be exploited. That’s why you need to remain vigilant. 

What can you do? 

• Refresh your knowledge of ‘spear’ (targeted) phishing by re-reading last month's StaffNet update on the Instructure (Canvas) attack. 
• Explore the National Cyber Security Centre (NCSC) website for practical cyber-security advice. 

Phishing simulations 

The University runs phishing simulations to help you practice spotting suspicious messages in a safe environment. These simulations are not designed to trick or punish anyone. They are a practical way to build confidence, test our awareness and help us respond well when real phishing attempts occur. 

Cyber security is a shared responsibility; it relies on both technology and people. The University has robust technical protections in place to help keep us secure, but we all need to play our part too.

More information

• University Email Phishing page - guidance on recognising and reporting phishing emails 
• University Data Protection and Cyber Security training - core training for protecting University information. 
• University Phishing Basics awareness course - a short course to help you spot common phishing techniques. You can take it as many times as you like!