Lesson 1.2 - Be Aware: Cybersecurity in Education

Definition: Fake emails, texts, or calls tricking users into clicking links or giving up sensitive information.

Example in Schools: A staff member receives an email that appears to be from the principal asking them to click a link and verify their login credentials.

Definition: Malicious software encrypts systems or files, demanding payment for release.

Example in Schools: A district's servers are locked down by ransomware, preventing access to grades, lesson plans, and attendance records.

Definition: Malicious code downloaded via fake apps or websites, sometimes hiding in software.

Example in Schools: A student unknowingly downloads a free game infected with malware that spreads across the school’s network.

Distributed Denial of Service (DDoS)

Definition: Floods the district’s servers with massive traffic, making systems unusable.

Example in Schools: During exam week, the school’s learning platform becomes inaccessible due to a DDoS attack.

Definition: Manipulating people into revealing confidential information through deception and trust exploitation.

Example in Schools: A caller pretending to be from IT support asks a teacher for their login credentials “to fix an urgent issue.”

Always verify the sender’s email address and avoid clicking links from unknown or suspicious messages.

Regularly backup important files and ensure staff understand safe email practices like verifying email addresses and safeguarding personal information.

Keep antivirus software up-to-date and avoid downloading unverified software or attachments.

Implement network monitoring and DDoS mitigation services.

Verify unsolicited requests for information even if they seem urgent, convincing or come from someone you know.