Ten Ways to Reduce the Risk of a Cyberattack on Your School

Ten Ways to Reduce the Risk of a Cyberattack on Your School
Ten Ways to Reduce the Risk of a Cyberattack on Your School

Business and Operations//

April 18, 2021

Cyberattacks are expected to occur every 11 seconds in 2021—and unfortunately, K–12 schools are increasingly at risk, thanks to distance learning. Some of the biggest threats are ransomware and funds transfer fraud. Threats commonly occur via the entry point of email, also known as "business email compromise."

Knowing how to reduce your risk for a cyberattack must be a top priority. Lower your risk for a cyberattack and keep your school safe with these 10 tips.

Tip #1—Deploy Multifactor Authentication

Since students and teachers probably log in on networks outside the school, it's a good idea to verify their identity regardless of the network. Multifactor authentication is a way to verify user identity (often via email or text) to log in.

Tip #2—Verify Wire Transfers

Funds transfer fraud is on the rise. In this scam, employees are tricked into logging into fake bank sites or installing software to gather information. These mistakes can allow third parties to access your school's bank credentials—making it easy for a fraudster to transfer funds.

Require your staff to verify vendors requesting money.

Tip #3—Conduct Routine Backups

It may sound like a no-brainer, but regularly backing up information can safeguard it—and offer insights into resolving any cyberattack. Your Information Technology (IT) personnel should monitor your school network and any equipment students and staff use at home.

Tip #4—Encourage Proper Password Management

Encourage users to create strong passwords and use a password manager. This can significantly lower the risk that a cybercriminal can access multiple platforms.

Tip #5—Update User Systems

Personal devices running on outdated versions of operating systems present an entry point for cyberattackers. For instance, ensure you upgrade from Windows 7 to Windows 10 or to Catalina for Mac users.

Tip #6—Identify Protections

Ensure firewalls are correctly configured and secure on routers and computers. Schools should have a content filter to protect students from inappropriate content, as per the Children's Internet Protection Act (CIPA).

Tip #7—Store Data Safely

Ensure the school community's data is private and in compliance with the Family Educational Rights and Privacy Act (FERPA). Schools have commonly moved to Cloud operating systems for data storage. The front line of defense for any Cloud system and to keep data secure is through encryption—methods utilizing complex algorithms to conceal protected information.

Tip #8—Create Policies

A surefire way to have a consistent protective system is to create policies and enforce them. Include these policies in your student and staff handbooks, which are acknowledged and signed each year.


webinar

Tune in to ask questions related to this Source article or other topics you've encountered lately.

Visit our NEW Community and start posting.


Tip #9—Pay Attention to Equipment

If you let students take school-owned devices home, ensure those units comply with all policies. Educate students about the rules governing device use and consider protecting equipment so others at home cannot log into your system.

Tip #10—Provide Education

Once you devise cybersafety policies for the school, it's vital to educate students and staff on what's expected, why safeguards are in place, and what they should do if they see anything suspicious. Consider sharing the FBI's Safety Online Surfing Program with your students and families.

A distinctive level of cyber protection.

Cyber Liability Insurance

Education about smart online practices and general cyber-security is key to preventing attacks, but these aren’t the only safeguards your school should use. A cyber-attack could still occur, leaving your school's finances and equipment—not to mention information about your students and your families—at risk. 

Cyber Liability from ISM Insurance helps your school manage your risk by coupling state-of-the-art, preventive cyber-security programs with best-in-class cyber-insurance through policies offered by our A+ carrier partners. We created our programs with schools in mind, tailored to address their unique needs.

LEARN MORE

ism
ism

Upcoming Events

2/25/2025 — 2/27/2025

workshop

Strategic Communications: Understanding and Engaging Your School’s Constituents

Status: Open

Register

1/15/2025 - 12:00pm ET

webinar

Five Things Heads Need to Know About Retiring Well

Status: Open

Register

More Events

  • webinar 1/22/2025 - 3:00pm ET

    Navigating AI Media: Policies, Education, and Protection for K-12 Schools

    Register
  • workshop 3/17/2025 — 3/21/2025

    Student-Centered Scheduling Design

    Register
  • webinar 1/23/2025 - 3:00pm ET

    Building a Culture of Giving and Getting Involved

    Register