New research by Keeper Security has revealed a concerning disconnect between parental trust and the actual cybersecurity practices happening in their children’s schools. While many parents believe schools are protecting their children’s sensitive information, only 14% of schools mandate security awareness training, and a mere 21% provide guidance on secure password management. This gap poses significant risks – widespread issues such as weak passwords and password reuse threaten student security. Alarmingly, 19% of respondents admitted to reusing the same passwords across both personal and school accounts, a practice that can lead to data breaches, identity theft and fraud.
The findings were noted in a new report entitled Cybersecurity in Schools: Safeguarding Students in the Digital Era. This global study highlights the growing cybersecurity challenges that threaten educational institutions, based on a survey of 6,000 parents and students across Australia, New Zealand, Singapore, Indonesia, Japan, France, the UK, US and DACH regions.
The research found that parental trust in their child’s school’s cybersecurity measures appears high, with 74% expressing confidence. However, this confidence may not reflect reality. Only 21% of parents report receiving any guidance on secure password management, highlighting a significant gap between perceived and actual security measures.
Despite the critical importance of strong passwords, password management within schools is often neglected. A mere 9% of schools provide access to password managers, leaving students and staff highly vulnerable to cyberattacks. This lack of robust password management tools significantly increases the risk of data breaches and compromises the overall security posture of the school.
Additionally, cybersecurity education within schools is alarmingly insufficient. Only 14% of schools mandate security awareness training, while a mere 13% even offer it as an option. This lack of formal training leaves the vast majority of students ill-equipped to navigate the complexities of the online world and effectively protect themselves from cyber threats.
“Schools play a pivotal role in educating and protecting students, but there is still a significant shortfall in cybersecurity readiness that must be addressed,” said Darren Guccione, CEO and Co-founder at Keeper Security. “As digital tools increasingly become embedded in education, schools must prioritise cybersecurity education and provide resources to enable students to protect themselves from evolving online threats.”
The report underscores the severe consequences of cyberattacks on educational institutions. Despite only 7% of respondents confirming a school hack, the impacts were widespread. Data theft affected 32% of institutions, while 27% experienced compromised accounts. While less common, cyberattacks also had significant financial ramifications, impacting both schools and individuals.
This study highlights the crucial role families play in safeguarding their children’s digital safety. While 51% of parents express concern about school cybersecurity, a concerning 19% of families continue to engage in risky online behaviours, such as password reuse. Keeper Security strongly encourages the adoption of robust cybersecurity best practices within the home environment. These practices include the implementation of Multi-Factor Authentication (MFA) and the creation of strong, unique passwords for each account – ideally at least 16 characters in length.
The report emphasises the critical need for a collaborative cybersecurity approach between schools and families. By enhancing cybersecurity education, raising awareness of online risks, and adopting secure tools such as password managers, schools and families can effectively work together to protect students.
