Over the past few years, we’ve witnessed an incredible shift in the number of schools leveraging innovative education technology in the classroom. More schools than ever are now using 1:1 device programs. Many districts continue to leverage remote learning opportunities. However, these successes came at a cost.
Cybersecurity has emerged as one of the most prominent issues district leaders are keeping on their radar. If you attended the Future of Education Technology Conference in Orlando this year, you would know considering how high attendance was for sessions that addressed cybersecurity-related topics. But despite the incredible ways schools are leveraging technology for students and staff, the K12 sector is one of the most vulnerable targets for cyber threats.
“So many of our schools across the nation are what we call ‘target rich, cyber poor’ in that they are often a frequent target for ransomware and other cyberattacks due to the extensive data kept on school networks, often without the proper protection,” the Cybersecurity and Infrastructure Security Agency (CISA) stated in a new report from Trustwave SpiderLabs.
For instance, in March 2021, Buffalo Public Schools was hit by a ransomware attack that resulted in nearly $10 million being spent on network security, fraud monitoring and other services to mitigate future risk. Higher education, too, is not safe from the issue. In May 2022, Illinois’ 157-year-old Lincoln College permanently shut down due to the lingering impact of a ransomware attack.
“These disruptions directly contradict the sector’s core mission of fostering knowledge and development,” the report reads. “As a result, educators and administrators are facing heightened concerns about cyber resilience—and recent breaches illustrate the risks.”
What exactly makes the education sector so vulnerable to cyber threats? The authors of the report outline six factors that district leaders should familiarize themselves with:
- The “BYOD dilemma”: The act of bringing one’s personal device to school poses numerous security challenges. Unmanaged devices are operating under a school’s network, resulting in strained IT resources.
- Complex infrastructure: Diverse devices, inconsistent security practices and other complex issues result in a sprawling attack surface with numerous vulnerabilities.
- Data trove: Cybercriminals are eager to get their hands on schools’ massive volumes of sensitive data, including PII, research and IP. This information is attractive to attackers and is amplified by online collaboration and open internet access.
- Exposed systems and services: Such risks are heightened due to publicly accessible network devices, including servers, building management systems, cameras and access systems.
- Resource scarcity: Schools facing budget constraints are less likely to invest in cybersecurity software and staff.
- Legacy risks: Districts leveraging outdated IT systems are increasingly vulnerable to cyberattacks due to the lack of updates and security patches.
“With millions of students now learning through technology in hybrid, remote or in-class settings, device security is no longer optional,” the report declares. “It’s crucial to ensure a safe and secure learning environment for everyone.”
More from DA: Missed FETC 2024? Here are some of the highlights
The researchers also provided four mitigation practices for leaders who want to bolster their cybersecurity:
- Create strict access controls for critical systems: This includes file servers, printer management software and collaboration tools.
- Place all servers behind the firewall and practice proper network segmentation.
- Address misconfiguration in network devices. Ensure firmware is updated and replace all default passwords.
- Offer ongoing cybersecurity training and awareness programs for both teachers and students. Emphasize security best practices.
