Dear Valued Customer,
Higher education institutions serve students, faculty, researchers, alumni, donors, and communities. That mission depends on trust, access, collaboration, and the protection of sensitive information. At CorePlus, trust is the foundation of every customer relationship. Thank you for allowing us to support your organization as cybersecurity, compliance, and technology risk continue to evolve. We are grateful for the confidence you place in our team, and we remain committed to helping you protect your people, your data, your operations, and the communities you serve.
Why This Matters Now
Cyber risk is no longer limited to isolated criminal activity. Organizations are facing a blended environment where ransomware groups, nation-state actors, hacktivists, and opportunistic attackers often use similar tactics. The most important shift is that attackers increasingly look for leverage: stolen data, disrupted operations, third-party access, and public pressure.
Iranian Cyber Impact: A Practical Assessment
Iranian-linked cyber activity should be viewed as a realistic, event-driven risk rather than a headline-only concern. During periods of regional conflict, sanctions pressure, or direct confrontation with U.S. interests, Iranian-aligned and opportunistic actors may increase phishing, credential attacks, website defacement, denial-of-service activity, exploitation of vulnerable internet-facing systems, and attempts to use third-party access as a foothold. The most likely impact is not a custom attack against every organization; it is opportunistic pressure against exposed VPNs, unpatched firewalls, weak remote access, cloud misconfigurations, and reused credentials.
For higher education, Iranian-linked activity is most relevant where institutions support research, government-funded programs, international partnerships, medical schools, engineering, defense-adjacent work, or politically sensitive topics. Universities may also face opportunistic phishing, account takeover, defacement, and denial-of-service activity during conflict cycles.
Forward-Looking Quantum Threat Assessment
Quantum computing is not an immediate mass-market threat, but it is a present-day planning issue. Practical systems capable of breaking RSA and elliptic-curve cryptography at scale remain expensive, fragile, and concentrated among nation-states, major technology companies, and research institutions. The real risk is the migration window: cryptography is embedded in identity systems, VPNs, certificates, cloud services, applications, backups, and vendor platforms. Data stolen today may retain value long enough to be decrypted later, making cryptographic inventory and crypto-agility practical priorities now.
Higher education has meaningful quantum exposure because research data, intellectual property, grant records, donor information, student records, and institutional archives can retain value for decades. The highest priority is identifying long-lived data and research systems that depend on cryptography that may need replacement over time.
The Current Threat Landscape
Current breach and threat intelligence reporting shows a consistent shift: attackers are exploiting software vulnerabilities faster, relying on trusted identities and third-party access, using cloud and SaaS integrations as paths to data, and applying AI to accelerate phishing, reconnaissance, and intrusion activity. Verizon's latest DBIR reporting indicates vulnerability exploitation has become a leading breach path, ransomware remains present in a large share of breaches, the human element is still a major factor, and supply-chain involvement continues to rise. Google Cloud threat reporting highlights increased exploitation of third-party software and SaaS trust relationships. CrowdStrike reports sharply compressed breakout times and AI-enabled adversary activity, while Palo Alto Networks Unit 42 emphasizes the role of weak identity controls and over-permissioned cloud access. IBM's 2025 breach research adds that shadow AI and insufficient AI governance are now measurable breach-cost and access-control issues. The business implication is that security programs should combine employee awareness with faster patching, MFA, better detection of data movement, tested incident response, AI-use governance, and stronger third-party oversight.
For higher education, the current threat landscape emphasizes identity, patching, mobile phishing, ransomware readiness, and third-party platform risk. A university environment has many users, decentralized departments, varied devices, cloud platforms, and research systems. That makes MFA, privileged access management, vulnerability management, research segmentation, and account takeover monitoring especially important.
Employee AI Risk & the Rise of AI Governance
Employee AI risk is now part of cybersecurity and compliance, not a separate innovation topic. Staff may use public AI tools to summarize emails, analyze spreadsheets, draft customer communications, troubleshoot code, review contracts, or process support tickets. Without policy and technical guardrails, that can expose confidential data, protected personal information, customer records, credentials, trade secrets, or regulated business information. AI governance should define approved tools, prohibited data inputs, human review requirements, logging expectations, vendor review, retention rules, and escalation paths for AI-related incidents.
Employee AI risk includes faculty, staff, researchers, or administrators using public AI tools with student records, financial aid information, grant data, unpublished research, HR records, legal material, or donor information. AI governance should distinguish acceptable academic experimentation from regulated institutional use, require human review, protect student data, and define rules for AI in admissions, advising, grading, research administration, and financial aid.
Recent Regulatory & Breach Themes
Higher education should continue watching GLBA Safeguards Rule expectations for student financial aid information, state privacy requirements, research sponsor obligations, and emerging AI rules affecting education and employment decisions. AI governance is moving from best practice to regulatory expectation, especially where AI influences access to education, employment, credit, housing, or services.
Recommended Priorities
- Inventory AI tools used by faculty, staff, departments, and administrative offices.
- Require MFA for faculty, staff, privileged users, and sensitive student systems.
- Segment research environments and protect unpublished IP or sponsor data.
- Review GLBA safeguards for financial aid and student financial information.
- Create guidance for AI in grading, advising, admissions, research, and student communications.
Townsend Bell — promoted to Support Team Lead
Townsend Bell joined CorePlus as a summer 2024 intern on the Operations team, then continued part-time as an Operations Analyst while finishing school. After graduating summa cum laude from Texas State University with a B.S. in Computer Information Systems, he moved into Service Delivery as a Systems Analyst — and has now earned a well-deserved promotion to Support Team Lead. His journey reflects the hard work, adaptability, and growth opportunities that define life at CorePlus. Congratulations, Townsend!
In Closing
Thank you for continuing to trust CorePlus. We value your partnership and look forward to helping your organization move forward with confidence in a changing risk environment.