Edtech gets schooled by third-party cyberthreats
In the education sector, cybersecurity controls and third-party risk management get put to the test -- and frequently don't get a passing grade.
Academic organizations might not seem like prime targets for cyberattacks, but these data-rich -- and security-insufficient -- schools, colleges and universities are often just what nefarious actors have in their sights.
In fact, cybersecurity services provider Quorum Cyber documented a 63% year-over-year increase in cyberactivity at higher-ed institutions from 2024 to 2025, and Clever, a K-12 identity platform vendor, found that 52% of U.S. school districts experienced a cybersecurity event in 2025, up 36% from the previous year. Further, threat exposure management platform vendor NordStellar reported that 2.4% of all ransomware attacks in the first half of 2026 targeted the education sector.
A growing trend among attacks on educational organizations is third-party breaches. In late April and early May, edtech company Instructure confirmed a cyberattackon its...
Copyright of this story solely belongs to techtarget.com. To see the full text click HERE