This article was originally published in EdTech Digest on 2.10.23 by Charlie Sander, CEO, ManagedMethods
The cybersecurity attacks K-12 technology teams are experiencing can sometimes feel like fighting a 5-alarm fire with a squirt gun.
CISA’s new toolkit is a helpful step forward. But, there are no guarantees in cybersecurity. No matter how much time, money, and expertise you have to throw at it, the risk is always there.
The good news is that you can mitigate the risk of falling prey to cyber-attacks. Let’s discuss common attacks and how to prevent your district from falling prey to them.
Ransomware gets all the headlines because it’s usually highly disruptive and expensive, whether or not you pay the ransom. But, ransomware is not the most common attack impacting school districts.
Phishing is the most common attack vector. It’s used to deploy malware, redirect payments to fraudulent accounts, and gain access to user accounts that can be used for various criminal purposes.
“Don’t get discouraged with your district’s cybersecurity. Focus on improvement versus perfection. Reach out to your peers and consortiums to learn how they’re solving problems.”
Charlie Sander,
CEO, ManagedMethods
Distributed Denial of Service (DDoS) is another common cyber attack. Today, DDoS can be an early indication of a broader attack. It’s used to test security resilience or to distract while another attack is launched elsewhere.
Finally, insider risk may or may not be categorized as an “attack” per se, but insiders are a common reason for data exposure. Sometimes it’s on purpose by a disgruntled employee— more commonly, it’s due to negligence. One example is employees sharing files using global link.
No person, process, or technology will 100% guarantee that your district won’t fall prey to a cyber attack. But, you can make your community a less easy target…