Security & Privacy


Screenshot of security research identifying API vulnerabilities in Edulog school bus tracking platform

Vulnerabilities in Edulog Portal Revealed Bus Location Data, Parent Logins for 6M Students

Security researchers said this week that API vulnerabilities in the Edulog school bus tracking platform made the names and geolocation data of 6 million student riders available to anyone, and while the vulnerability has been fixed, schools that post their Edulog sign-up code on their websites are still at risk.

EdSAFE AI Alliance Relaunched to Promote AI 'Safety' in Education

New York City-based InnovateEDU has announced the revival of the EdSAFE AI Alliance to promote the responsible use of AI in education on a global scale. The organization is a coalition of education/learning and technology partners dedicated to fostering AI policy, collaboration, and best practices in K–12 education.

Centegix Debuts Safety Platform Uniting Its Emergency Response Tech Solutions

Incident response technology vendor Centegix has launched a new integrated, cloud-based Safety Platform that unites its various school safety solutions and connects with emergency responder partners, the company said in a news release.

a bar graph shows how E-rate applicants are using funds for connectivity in schools and libraries

Annual E-rate Survey Shows Majority of Schools, Libraries Want Cybersecurity Services Added

An overwhelming majority of E-rate applicants want the FCC to include cybersecurity services in the program, according to the 14th annual E-rate Trends Report released today by Funds For Learning.

Overall Malware Down Slightly in the Quarter, as Double-Extortion Attacks Increase

Overall Malware Down Slightly in the Quarter, as Double-Extortion Attacks Increase

Malware in general declined in the second quarter of 2023, according to a new report, even as double-extortion ransomware grew substantially.

Registration Opens for CISA's 2023 Summit on K-12 School Safety and Security Set for Nov. 1-2

Registration is now open for the Cybersecurity and Infrastructure Security Agency’s virtual National Summit on K–12 School Safety and Security on Nov. 1–2, 2023, designed for K–12 education leaders and safety stakeholders from local, state, and federal levels, the agency said in a news release.

Bar graph shows education IT survey responses on most common security incidents experienced in past 12 months and percentage of education organizations operating in the cloud, on-premises or hybrid

Compromised On-Premises Accounts Cited in 3 of 4 Attacks in Education Sector

In 75% of cyberattacks targeting education organizations over the last 12 months, IT and security managers cited compromised on-premises accounts as the cause, according to research from cybersecurity vendor Netwrix.

Making Information Security Everyone

Making Information Security Everyone's Responsibility

Intrusions into education networks have never been more rampant. And at this point, information security is the top concern among IT leaders and administration in K–12 districts. What's more, there is the distinct possibility that AI will compound the problem, while also being used to help deal with threats.

graph from 2023 SETDA State of Ed Tech Report compares respondents answers to "what are top unmet needs in your state" from 2022 and 2023

Cybersecurity, AI Policy Top List of State Ed Tech Priorities

New survey results from the State Education Technology Directors Association underscore the importance of collaboration across agencies and school districts as cybersecurity and AI pose the biggest unmet challenges for public education.

image says K12 Education Technology Secure by Design Pledge

CISA Launches Secure by Design Pledge with 6 Ed Tech Vendors

The Cybersecurity and Infrastructure Security Agency has launched a voluntary pledge for K–12 education technology software makers to “commit to designing products with greater security built in,” the agency said in a news release.