Why K12 is more vulnerable to ransomware than you think

Date:

Share post:

While cybersecurity has always been a top priority for K12 IT professionals, only recently has there been a profound sense of urgency surrounding the subject. Schools are an easy target for cybercriminals, and an uptick in edtech adoption in recent years has only increased the available pool of sensitive data for hackers to tap into. Educators need to understand what they’re up against.

Ransomware, a prominent tactic used by cybercriminals, impacts industries in nearly every sector—and education is no exception. In fact, ransomware attacks against education are up 25%, according to a new report from cybersecurity firm Zscaler. Yet, this trend pales in comparison to the most impacted sector, energy, which has witnessed a 527% surge in attacks.

Summer break is a critical time for school districts to bolster their security networks while students and staff are out of the classroom. Several school districts were hit with ransomware attacks in the last few months, including the Louisiana Special School District, which first reported in May that the prominent ransomware gang, Akira, invaded the school system’s files using “brute force,” WAFB reports.

Last month, Superintendent David Martin revealed that Akira may have accessed personal information, including social security numbers, medical information and addresses.


More from DA: Do college degrees lead to better jobs? Typically, yes


The ransomware gang is one of many identified in the Zscaler report as some of the “newest” ransomware groups on the scene since April 2023. The group is among the most active, being responsible for 224 data leak victims in the past year. Other high-profile gangs to look out for include:

  • LockBit
  • BlackCat
  • 8Base
  • Play
  • Clop
  • BianLian
  • Black Basta
  • Medusa
  • NoEscape
  • Stormous
  • Rhysida
  • Qilin
  • Agenda Crypt

“While this rise highlights the prevalence of ransomware attacks, it may not capture the full extent of ransomware incidents,” the researchers wrote. “Many attacks go unreported or are resolved privately through ransom payments without public disclosure.”

Predictions for 2025

As we look to the school year and beyond, IT professionals must take a preventative approach to K12 cybersecurity. The report offers seven predictions based on these ransomware trends, six of which may come in handy as you prepare to bring students back to school:

  1. Ransomware hackers will adopt highly targeted attack strategies
  2. Targeted attacks will increasingly involve voice-based social engineering
  3. Ransomware attackers will increasingly adopt GenAI to create more effective, personalized and local campaigns
  4. More cybersecurity incidents will be reported in line with new SEC rules
  5. High-volume data exfiltration ransomware attacks will be on the rise
  6. International collaboration against cybercrime organizations will build upon existing efforts
Micah Ward
Micah Wardhttps://districtadministration.com
Micah Ward is a District Administration staff writer. He recently earned his master’s degree in Journalism at the University of Alabama. He spent his time during graduate school working on his master’s thesis. He’s also a self-taught guitarist who loves playing folk-style music.

Related Articles