K-12 Cybersecurity Attacks Mounting

  • By Dian Schaffhauser
  • 11/01/19
cyber attacks on schools

Source: K-12 Cybersecurity Resource Center and Barracuda Networks

A study of data available from various security incident-tracking resources found that there have been 301 reported cybersecurity attacks against schools so far this year, compared to just 124 in 2018. However, that number would be much higher if it were possible to include other cases that "went either unreported or even undetected," according to security company Barracuda Networks, which released the analysis.

According to the company's security researchers, which examined data related to 721 incidents reported since January 2016 and tallied by the K-12 Cybersecurity Resource Center, the most common types of threats targeting schools fell into five categories:

  • Data breaches (31 percent);
  • Malware (23 percent);
  • Phishing (13 percent);
  • Network or school infrastructure hacks (10 percent); and
  • Denial-of-service attacks (4 percent).

Another 16 percent of security events involved accidental disclosure of data; and 3 percent were classified as "other."

Phishing was of special interest to the researchers as a type of security problem that often goes unreported by schools unless "an incident occurs as a result or the campaign is large enough to warrant attention." In the United States, the company noted, 5 percent of the phishing incidents reported to the Resource Center were W-2-related. Another area of concern: phishing that was intended to "scam" the school or district, which made up 4 percent of the total attacks and struck individuals or districts to the tune of thousands of dollars per incident.

Barracuda offered advice in its report:

  • First and foremost, invest the money to put a "full" perimeter security portfolio in place, including "network firewalls, web filters, e-mail protection and application firewalls."
  • Stay on top of internal security, such as intrusion detection, data backup and anti-malware programs, and especially keep up with security patches.
  • Adopt incident response functionality to help when a security incident takes place and to isolate and remediate the problems.
  • Finally, invest in "capable IT security staff" or put in place managed services that can deliver this expertise to the school or district.

The complete analysis is openly available on the Barracuda website.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • abstract illustration of a glowing AI-themed bar graph on a dark digital background with circuit patterns

    Stanford 2025 AI Index Reports Surge in Adoption, Investment, and Global Impact as Trust and Regulation Lag Behind

    Stanford University's Institute for Human-Centered Artificial Intelligence (HAI) has released its eighth annual AI Index Report, measuring AI's diverse impacts over the past year.

  • The AI Show

    Register for Free to Attend the World's Greatest Show for All Things AI in EDU

    The AI Show @ ASU+GSV, held April 5–7, 2025, at the San Diego Convention Center, is a free event designed to help educators, students, and parents navigate AI's role in education. Featuring hands-on workshops, AI-powered networking, live demos from 125+ EdTech exhibitors, and keynote speakers like Colin Kaepernick and Stevie Van Zandt, the event offers practical insights into AI-driven teaching, learning, and career opportunities. Attendees will gain actionable strategies to integrate AI into classrooms while exploring innovations that promote equity, accessibility, and student success.

  • silhouetted human figures stand opposite a glowing digital brain, surrounded by abstract circuits and shadowy shapes

    Tech Execs Expect AI Advancements to Increase Security Threats

    Forty-one percent of tech executives in a recent international survey said they believe advancements in AI will significantly increase security threats. NetApp's second annual Data Complexity Report points to 2025 as "AI's make or break year."

  • hand touching glowing connected dots

    Registration Now Open for Tech Tactics in Education: Thriving in the Age of AI

    Tech Tactics in Education has officially opened registration for its May 7 virtual conference on "Thriving in the Age of AI." The annual event, brought to you by the producers of Campus Technology and THE Journal, offers hands-on learning and interactive discussions on the most critical technology issues and practices across K–12 and higher education.