More than three-quarters (78%) of UK schools have experienced at least one type of cyber incident, according to an audit conducted by the National Cyber Security Center (NCSC) and the National Grid for Learning (LGfL).
This analysis is a repeat of an audit conducted in 2019 that allowed the authors to see the extent of cybersecurity improvements made in schools in recent years.
The report, which includes insights from over 800 UK schools, found that 73% of respondents experienced phishing emails sent to staff or being directed to fraudulent websites. This was followed by people impersonating school emails, compared to 69% in 2019. (26% vs. 20% in 2019), malware infections, including viruses or ransomware, on networked devices (21% vs. 30%), and short-term or permanent unavailability of critical information (18% vs. 35%). .
Only 7% said their school had been significantly disrupted by a cyber incident or attack.
The audit also showed many improvements in the school’s security measures. For example, all schools surveyed currently use firewall protection, 99% use antivirus solutions, and 74% use his two-factor authentication on their most important accounts.
Additionally, more than half (57%) of respondents regularly submit cybersecurity reports to their school leaders/governors, and 83% said they have a cybersecurity policy or plan. increase.
More than half (53%) of schools surveyed felt prepared for a cyberattack.
Cyberattacks against the education sector have surged in recent years, in part due to rapid digital transformation programs that have expanded the attack surface.
Ransomware is a particular challenge for schools, with sensitive data from 14 UK schools reportedly exfiltrated online in early January 2023 after threat actor Vice Society refused to pay a ransom demand. I was.
Bernard Montel, EMEA Technical Director and Cybersecurity Strategist at Tenable, commented on the report: defense.
“Ransomware gangs target known but unpatched software vulnerabilities such as PrintNightmare. In parallel, finding and protecting sensitive information must be a priority,” said Montel.
