According to a survey by security firm BlackFog, the education sector is now the top target for ransomware attacks, surpassing government and healthcare. A successful cyber-attack on a school or college can have far-reaching and devastating consequences.
For Caio Sposito, country manager Brazil at Arcserve, the increase in remote teaching after the pandemic has expanded the attack surface. “Before, e-learning was not so widespread. Now, with many more people now accessing educational networks from remote locations, cybercriminals can exploit many more entry points, putting additional pressure on schools”, details Caio.
Compounding the situation, many schools have limited resources to invest in data security, which makes them more vulnerable to cyberattacks. “Many cannot afford to hire top-notch technical experts to manage and protect their data or buy the latest security tools, but they forget that the market already has effective solutions that are exceptionally cost-effective” , warns the executive.
This scenario requires preventive measures, including building a culture of security awareness, educating employees and students on best practices for data protection. In Caio Sposito's opinion, another decisive attitude of schools is to adopt the concept of zero trust, in which all users, devices and networks are not trusted until proven otherwise. For example, students who log into a system only have access to the specific resources they need to complete their assignment and nothing else. “By granting the minimum necessary permissions, the school ensures that sensitive information remains secure and that students can only access the information they need to complete their assignments.”
Returning to the issue of scarce resources, schools on a tight budget can save money by employing data tiering to move less critical and less used information to low-cost storage options. Another effective measure against criminals is conducting regular assessments that help identify potential security threats and determine your level of preparedness to defend against them. By conducting these assessments, schools can keep up with the latest threats and take the necessary steps to mitigate them.
“As schools embrace more and more technology in their daily operations, it is critical that they also prioritize data protection and educate students and staff on the importance of security. By taking proactive measures to defend confidential information, schools not only ensure mandatory compliance with applicable laws, but also create a safer and more secure learning environment”, summarizes Caio Sposito.
