Cyber Attacks on Schools Are Increasing | FBI and CISA Issue Warning to K-12 Institutions

Online Learning Brings New Cybersecurity Risks

As schools continue to rely on remote learning technology, cybercriminals are taking notice. The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint alert warning that ransomware and other cyberattacks against K-12 schools are rising at an alarming rate.

With millions of students learning online, educational networks have become prime targets for hackers seeking to exploit vulnerable systems, outdated software, and untrained users. While virtual learning has been critical during the pandemic, it has also exposed schools to new and evolving cybersecurity threats.

Ransomware Surge in K-12 Education

According to data from the FBI and CISA, 57 percent of all ransomware incidents reported in August and September 2020 targeted K-12 schools—up sharply from just 28 percent earlier that year. Attackers are deploying a variety of malicious software strains to breach systems, steal sensitive information, and disrupt online classes.

The most common threats include the Shlayer and SeuS malware families, but others such as NanoCore, Gh0st, Kovter, Cerber, and Dridex have also been detected. These attacks range from ransomware encrypting school files to Trojan programs designed to steal login credentials and personal data.

This wave of cyber incidents has been confirmed by multiple security firms, including Check Point, which released a report mirroring the FBI’s findings and warning that K-12 institutions remain under sustained digital assault.

Why Schools Are Prime Targets

K-12 institutions are particularly vulnerable because they often lack the cybersecurity resources of large corporations or government agencies. Many rely on older hardware, minimal IT staffing, and limited budgets for security software or training. Combined with an increased dependence on cloud-based learning platforms and remote access, this makes them appealing and easy targets for ransomware operators.

Hackers are also drawn to the valuable information stored in school networks—student records, parent contact data, and even financial details—making breaches not just disruptive, but potentially devastating.

How Schools Can Strengthen Defenses

The FBI and CISA recommend several key measures to reduce the risk of ransomware and malware attacks:

• Ensure all software, systems, and devices are updated with the latest security patches.

• Implement multi-factor authentication (MFA) for staff and administrators.

• Regularly back up data to secure, offline locations.

• Limit access to remote desktop connections and external USB devices.

• Train staff and students to recognize phishing attempts and malicious links.

• Develop and test an incident response plan for rapid recovery.

These proactive steps can help prevent attacks or at least minimize their impact when they occur.

A Call for Continued Vigilance

Until traditional classroom instruction fully resumes, schools will remain heavily dependent on digital infrastructure. Cybersecurity must therefore be treated as a core component of education technology, not an afterthought.

As cyberattacks against schools continue to escalate, administrators, teachers, and IT teams must stay alert, implement strong safeguards, and prepare for potential disruptions. Awareness, training, and secure systems are the first lines of defense in keeping students and staff safe online.

Computer Networks, Inc. supports educational institutions and small businesses across Virginia Beach, Norfolk, Chesapeake, Portsmouth, Suffolk, and Roanoke, VA with expert cybersecurity, network protection, and compliance services.

Call 757-333-3299 x200 or email info@computernetworksinc.com to learn how we can help your organization strengthen its defenses.