Hackers are increasingly targeting the education industry, leaving studentsâ information vulnerable to identity theft and other types of fraud.
Colleges, training providers and other private educational companies received more malicious emails than any other sector in the first quarter of 2019, according to Mimecast, an email and data security company.
âEducation information is really sensitive, nice information for hackers to have,â said Michael Madon, senior vice president of threat intelligence at Mimecast. âItâs personal information, health information, financial information â itâs a microcosm of someoneâs life.â
Thousands of studentsâ private information was exposed when education software company Pearson experienced a cyberattack in July. Regis University in Colorado recently shut down its phones, emails and website following an âexternal malicious threat. â Hackers in July disabled the technology systems at Monroe College in New York and demanded $2 million in bitcoin.
One survey found that half of education-vendor websites lack adequate security measures.
Hackers know students are often using personal and financial data for the first time and havenât yet learned how to guard it, experts say.
âThe biggest data security issue in education is the administration and teachers, who email personal information constantly,â said Dorothy Haraminac, a certified fraud examiner.
In addition, she said, personal phones and laptops are allowed to connect to the same Wi-Fi network as a school and its teachersâ computers. âThousands of compromised devices walk through the door every day,â Haraminac said.
Students should avoid clicking on links in emails, Haraminac said. And before they engage with any attachments, they should make sure the senderâs address matches the one in their contacts. They should also avoid providing sensitive information over the phone â unless they made the call.
âMost importantly, take the time to understand the risks,â Haraminac said.
âVery little cyber hygiene training is done for students, and less for teachers and administrators,â she added. âWhen I was a high school math teacher, we had one hour one day in a year to go over âGoogling yourself.ââ
Fortunately, some states have recently introduced bills to address student data privacy.