Cybersecurity Awareness

Cyber threats continue to target K-12 education
Posted on 10/23/2024
Cybersecurity protection

October is Cybersecurity Awareness Month, and provides a good time to be reminded of the diligence needed to protect the District against cyber threats. With the growing reliance on technology in education, staying vigilant and informed about the latest security risks and best practices is crucial. K-12 education is one of the hardest-hit industries when it comes to cyberattacks.

Below is a high-level summary of cyber security incidents District 428 has defended against in just the first two months of the school year.

  • External brute-force Login Attempts: ~169,000
    NOTE: This number is being under reported, brute-force attempts occur all day, everyday, multiple times a minute.
  • External Emails Actioned Against: 27,336
  • Network Devices Actioned Against: 1334
  • Identified (& Prevented) MITRE ATT&Ck Event Types
    • Recon: 17
    • Initial Access: 2
    • Execution: 114
    • Defense Evasion: 2
    • Discovery: 5
    • Lateral Movement: 380
    • Command and Control: 798
    • Exfiltration: 206
  • Spoofed District Emails Rejected
    • d428.org: 11,351
    • dist428.org: 7871
  • Newly Found Vulnerabilities Mitigated: 215

These threats are ever-present. Following are some essential tips to keep in mind as when navigating the digital world.

  1. Secure Passphrases: Passwords are no longer the standard for security. You should instead use a passphrase. Use a combination of words, numbers, and special characters that are easy for you to remember but difficult for others to guess. Avoid using easily guessable information, such as birthdays or names.
  2. Enable Two-Factor Authentication (2FA): 2FA adds an extra layer of security to your accounts. It typically requires a one-time code sent to your mobile device, making it much more challenging for unauthorized access.
    1. How to Setup Google 2FA
  3. Beware of Phishing: Be cautious about clicking links or downloading attachments in emails or messages, even if they appear from a trusted source. Always verify the sender's legitimacy before taking any action.
    1. Learn how to identify Phishing Emails
  4. Keep Software Updated: Regularly update your operating system, software, and antivirus programs to patch vulnerabilities and protect your devices from known threats.
    1. How to Updated Windows 10 or 11
    2. How to Update MacOS
  5. Secure Home Networks: If your students are learning remotely, ensure your home network is secure with a strong password, and consider a separate network for your school devices.
  6. Education: Educate yourself and your children about online safety. Discuss the risks of sharing personal information online and the importance of responsible internet use.
    1. Digital Citizenship at Home
  7. Data Privacy: Protect sensitive information by only sharing it with authorized individuals and organizations.
    1. Practical Ways to keep your information safe
  8. Safe Social Media Use: Be cautious about what you share on social media, and adjust your privacy settings to limit the exposure of personal information.
    1. Stay Safe Online
  9. Regular Backups: Regularly backup important files and data to avoid data loss in a cyber incident.
    1. Home Backup Strategies

Our school district is dedicated to maintaining a safe digital learning environment, and we want to empower our entire community with the knowledge and resources to do the same. Remember, cybersecurity is a shared responsibility. By staying informed and practicing good cyber hygiene, we can create a safer digital world for our students and ourselves.


Website by SchoolMessenger Presence. © 2024 SchoolMessenger Corporation. All rights reserved.