Ransomware attacks on education sector go unreported for months

Countries like the United Kingdom, the United States, Australia, and Canada have established cyber laws that require organizations affected by ransomware attacks to report these incidents within a specific time frame. These mandatory reporting windows typically range between 48 to 72 hours, depending on the country’s regulatory framework. The aim is to ensure transparency, facilitate timely responses, and protect stakeholders from further harm.

However, a recent study by Comparitech reveals a troubling trend in the U.S. education sector. On average, educational institutions across America take approximately 4.8 months to publicly disclose data breaches resulting from ransomware attacks. In some extreme cases, schools have waited as long as six months before reporting the breach or notifying affected individuals about the compromise of their personal data.

What’s more alarming is that many of these incidents only come to light when stolen data appears for sale on the dark web. In other words, rather than being proactive, many institutions remain silent until external parties expose the breach.

A notable example of this occurred at the end of last year, when a significant ransomware attack targeted PowerSchool software—widely used by school districts for managing student information. The attack affected over 100 school districts, as hackers managed to infiltrate and encrypt critical servers. Yet, details of the breach only surfaced publicly once the compromised data began circulating in underground cybercrime markets.

This pattern of delayed disclosure not only raises serious ethical and legal questions but also puts students, parents, and educators at heightened risk of identity theft, fraud, and other cyber-related harms.

Ad

Join our LinkedIn group Information Security Community!

Source link

#Ransomware #attacks #education #sector #unreported #months

accessories and peripherals AI artificial intelligence bank banking blockchain breaking business buying guides challenger cloud cybersecurity digital donald trump elon musk execution fin finance financial Finextra fintech government headlines health insurtech investment IT latest mobile news online payments politics regtech retail review reviews science services shopping tech technology trade transaction unicorn

Learn more

• AI & Cloud Computing
• AI & Cybersecurity
• AI & Sentiment Analysis
• AI Applications
• AI Ethics
• AI Future Predictions
• AI in Education
• AI in Fintech
• AI in Gaming
• AI in Healthcare
• AI in Startups
• AI Innovations
• AI News
• AI Research
• AI Tools & Automation
• AR/VR & AI
• Deep Learning
• Emerging Technologies
• Machine Learning
• Robotics & Smart Systems

Recent Posts

Ransomware attacks on education sector go unreported for months

Towards a Deeper Understanding of Reasoning Capabilities in Large Language Models

Workload Automation Security: Best Practices & Examples

Epic says Apple has blocked Fortnite’s return to the US App Store | News-in-brief

Five cloud providers operating under strict data legislation

Can you have it all? Integrating new channels in a new world of payments

What’s coming up at #ICRA2025?

Building Readiness for AI Agents in Healthcare Systems – with Raheel Retiwalla of Productive Edge

Dual Enrollment Creates a Pipeline for Professional Skills, Education and Equity

Research cuts are threatening crucial climate data