As students all over the country prepare to return to school, there is a heightened level of concern around Cybersecurity. Look at the K-12 Cybersecurity Resource Center, which tracks cyber incidents, and you can easily see several things:
- It tallies the number of K-12 Cyber Incidents reported since 2016 – a total of 939 when I checked.
- It provides a map showing recent incidents. A quick browse, while I was on the site, showed recent incidents in some of these local systems: Colonial Heights, Powhatan, and Albemarle County.
- By clicking on any incident on the map, you get details of the incident reported.
A report published by this group provides an annual look at Cybersecurity with breakdowns on information including lessons to be learned. According to the report, these escalating incidents caused the following:
- School closures.
- Theft of taxpayer dollars.
- Stolen identities.
- Tax fraud.
- Altered school records
- Loss of access to educational technology platforms.
Some key considerations that contribute to the escalation in incidents against educational systems are identified in a report by EdTech Magazine. These include:
- A misunderstanding that schools do not have anything that hackers would find interesting.
- Public understanding that schools are underfunded in technology.
- The lack of adequate human resources to build and maintain technology platforms.
What are the most common threats to these institutions (according to a report by the Consortium for School Networking)?
- Phishing accounts for 90% of all attacks.
- Distributed Denial of Service attacks.
- Data Breaches leading to the release of confidential information.
- IoT vulnerabilities, such as security cameras and non-managed devices in use by students and staff members.
We have students returning to schools, and we have customers who operate in the educational system. Know that our schools are under attack and make those around you who are part of this ecosystem aware.
Good luck and be safe,
Allen Jenkins, CISO