Keeping K-12 Cybersecure–the newsletter of the K-12 Cybersecurity Resource Center–curates the best cybersecurity and privacy news for K-12 policymakers, administrators, IT professionals, vendors, and privacy advocates. The latest edition (Keeping #K12CyberSecure [#25]: “Are You Prepared?” | October 2, 2019”) provides information on recent updates to the K-12 Cyber Incident Map, other additions to the Resource Center, informed commentary, and curated news you can use.
While there’s much more available in the newsletter itself, here’s a sampling of the must-read articles published since last edition:
- In response to a series of ransomware incidents affecting NY schools, US Senator Schumer successfully advocated for Senate passage of new federal legislation aimed to help. Back to the House it goes for consideration, so it is not yet clear if this bill will make it over the finish line and be signed into law.
- Speaking of federal sources for K-12 cybersecurity support, CoSN and an array of technology/security solutions providers are advocating for an expansion of allowable uses of E-Rate reimbursements.
- At the state level, Texas has begun mandatory cybersecurity training for state and local government employees, including school districts.
- Unclear of your school district’s responsibility is in the event of a data breach? This seems a useful summary and advice: “The Real Risk of Data Breach And What Schools Can Do To Be Prepared.”
- Speaking of data breaches, the educational technology company Thinkful confirmed a data breach days after it was acquired for $80 million by Chegg. Chegg itself remains on the minds of many a higher education IT leader nowadays as there are widespread reports of information from their breach (“Chegg resets 40 million user passwords after data breach“) being used in credential stuffing attacks against colleges and universities.
- Is there no honor among thieves? Two recent school-related examples suggest not: “Georgia teachers’ retirement system sounds alarm on phishing scam” and “PTA targeted at Tampa elementary school, hackers use parents’ names in mass emails, FBI investigating.”
- Voices from the field:
- When faced with ransomware, find out why one school IT director is saying, “Thank the Lord for Linux, Chrome devices, and backup!”
- Listen in as April Mardock of Seattle Public Schools explains “how to protect school districts against local ransomware attacks.”
- Over on the OpsecEdu blog, Nathan McNulty of Beaverton School District explains “It’s the fundamentals that keep you safe” and offers advice on how to get a handle on patch management.
- Chris Wherley of the Learning Technology Center of Illinois advocates for the NIST Cybersecurity Framework for K-12.
- A UK schoolboy turned to ‘cyber crime‘ to avoid doing homework. Let him who is without sin cast the first stone…
Be sure to check out the full newsletter and sign-up to ensure you get all the latest news direct to your inbox. And, as always, please contact us with any feedback, tips, or suggestions.