Schools provide the support needed to help ensure a brighter future for millions of students across the country. Unfortunately, with such a huge responsibility on your hands—and the large amount of sensitive data you may have stored—you could be a tempting target for cybercriminals who won’t think twice about holding your school ransom for a big payoff.
Think it can’t happen to your school? Think again.
Here are a few alarming statistics that you should know:
Know your terminology.
With cyberattacks becoming more frequent, proactive cybersecurity starts with education, and knowing key terminology can be an important first step to becoming more cyber-aware and secured. The International City/County Management Association (ICMA) highlights a few definitions to know—and while ICMA is an association of city and county managers specifically serving local governments, these are terms that all entities should be aware of:
As these threats continue to impact schools across the country, let’s take a moment to look at a few real-life examples.
Baltimore County Public Schools faced a ransomware attack in November 2020. The attack happened during full-time virtual learning, and brought Maryland’s third largest school district to a halt—cancelling virtual learning for 115,000 students for several days. A day before the attack, a state audit found “significant risks” within the system’s computer network as it was not adequately secured, and personal information wasn’t properly safeguarded. A year following the initial attack, it was reported that the cost of ongoing recovery totaled nearly $9.7 million.
The impact of this attack was still being felt in 2022, too. When the hackers hit the school system, retired teachers were unable to change their medical insurance payments—even when they changed policies. This continued for more than a year following the attack and affected up to 9,000 retirees, and in some cases, retired teachers were owed thousands of dollars.
In August 2020, during the first week of school, Clark County School District (CCSD)—the fifth largest school district in the country—was targeted by hackers when computer systems became infected with a virus prohibiting access to certain files. When officials refused to pay a ransom to unlock the district’s computer servers, the hackers published documents containing social security numbers, student and employee names, addresses and grades.
One month following the ransomware incident, CCSD started to receive reports of individuals getting phishing phone calls from numbers that appeared to be connected to the school district. These calls appeared to be a third-party spoofing caller ID and used robocalls to attempt to phish and demand payment—a great reminder that phishing attacks don’t always come in the form of email!
In March 2021, Broward County Public School District of Florida experienced a ransomware attack that had hackers demanding $40 million in ransom. After refusing to pay up, the hackers published nearly 26,000 stolen files—many of which contained accounting and financial records, and confidential employee and student information.
An investigation into the breach found that access to the school network was first gained by unauthorized individuals in November 2020, with the ransomware being deployed in March 2021. It was also revealed that the district withheld details and delayed notifying potential victims of the cyberattack—putting them in the media’s spotlight.
The road to recovery
The recovery process can vary—in some cases dragging on for months and even more than a year—and in instances where you pay hackers’ ransom demands (which is never encouraged), the time it takes to restore and upgrade equipment can still be significant. In addition to the disruption to your school day, the cost of a breach can rack up millions.
In fact, according to IBM’s annual Cost of a Data Breach Report—which studied over 550 data breaches worldwide—the average cost of a breach rose from 4.24 million in 2021 to 4.35 million in 2022 (with the average cost in the U.S. alone being $9.44 million). To calculate this number, four elements were taken into consideration: detection and escalation, notification activities, post breach response and lost business.
While these numbers are alarming enough, in some high-profile and extreme cases, they can be even higher. For example, the 2020 attack on Baltimore County Public Schools that was detailed above.
So, how can you avoid falling victim? While there’s no one-size-fits-all solution, there are various strategies you can put in place to minimize your cyber risks. Consider the following to help keep your data safe and secured.
Following the ransomware attack on the Colonial Pipeline in May 2021, the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) released an announcement with recommendations to help prevent business disruption from an attack and mitigate vulnerability.
While these recommended strategies are aimed toward the critical infrastructure industry, this information is relevant to almost all business and public entities—schools included.
To reduce your risk of compromise:Did you know that more than 90% of all cyberattacks begin with phishing? Being able to identify these types of emails will be critical. Here are 4 red flags to look for:
Visit our cybersecurity site for even more free valuable tools and best practices to help keep your school safer online.
Just one cyber breach can have you spending millions, impact your school and its mission, and damage your reputation. Don’t wait. Now is the time to make sure you have established policies and plans in place to better protect yourself from cybercriminals.