How School Districts can defend themselves from increased cyberattacks.
While there are changes for each generation of students to experience, it’s safe to say that the impact of the pandemic on the scholastic world in 2020 was dramatic and immediate.
The transition from in-person classes to web-based learning was startling for everyone, but especially K-12 students because of the rigid daily schedules. In the span of a few months, the use of technology like tablets and laptops allowed students to engage with remote learning at home became ubiquitous.
But while students and teachers struggled valiantly to adapt to the challenges of digital learning, school districts also experienced a massive surge in cyberattacks.
A recent article by Josh Horwitz, COO of Enzoic, delved into this topic and identified that the K-12 educational sector is well on its way to becoming a ‘prime target’ for cyberattacks. Data from the non-profit K12 Security Information Exchange revealed that the rates of digital attacks had increased 18% from the previous year—an average of two cybersecurity incidents per day.
According to the same research, the types of attacks on the education sector were primarily in the form of data breaches, ransomware, and the large category of invasions taking place on Zoom, email, and social media. These meeting and class invasions were defined as “incidents” where unauthorized individuals disrupted online classes.
Horwitz reports that the rapid shift from in-person to remote learning not only meant that there were more opportunities for risk, but also that school districts were much less able to react to the influx of attacks. A factor was the shift to unsecured home networks, as well as the school districts having so little cybersecurity within their IT systems.
Why might hackers target school networks? Look no further than the type of data the systems usually need to collect. Data about students, their parents, guardians, and families; and additionally, about school district operations.
As Horwitz writes, “it’s critical that the industry overhaul the traditional approach to K-12 cybersecurity to ensure the strongest defense possible in today’s evolving threat landscape.” Most educators are assuming that remote or device-based learning will continue in some capacity. Horwitz suggests the following security practices to help mitigate attacks:
It’s clear to cybersecurity professionals that the education sector is becoming just as much of a target for criminals as the financial and healthcare industries. Acting now to protect schools, students, and our communities is crucial.