Cybersecurity Compliance is Only Half the Battle for EdTech

MarketScale
MarketScale
Dec 6, 2022
cyber security compliance cybersecurity edtech response plan vulnerabilities

TechCrunch recently reported on accusations levied by the Federal Trade Commission against edtech giant Chegg – the FTC filed a legal complaint earlier this week indicating that Chegg’s lapses in cybersecurity compliance has resulted in numerous separate data breaches in recent years, and that these breaches were avoidable with better cybersecurity practices.

Sai Huda, CEO of CyberCatch, explains that cybersecurity compliance is only the first step in ensuring data security for edtech customers. The knack is ongoing maintenance and management of those security systems to identify and plug holes as needed – with thousands of attacks levied against educational institutions, hackers will always find vulnerabilities and exploit them.

Sai’s Thoughts

“Along with that, there’s gotta be two other things they’ve gotta do. One is they’ve gotta test those controls regularly. So just implementing the hundred eight controls and thinking you’re in compliance, it is just step one, the step 2, 3, 4, 5, 6, 7, 8, 9, 10 are to continuously test those controls because controls will break.

So, the key is to find those control failures, those security holes before the attackers do, and then plug them, and therefore the attackers will not be able to exploit those security holes and will not be able to be successful. The third thing the school sector must do is to have an incident response plan because it’s not a question of if, but when an incident will happen.

So the key is to be able to detect this incident and then to be able to respond so that damage is mitigated so that perhaps ransomware isn’t spread. Perhaps it can be curtailed. Data can be prevented from being stolen. Incident response plan is also key, and it must be implemented. That’s the way to be successful.

K12 schools are definitely in line of sight of attackers. CyberCatch scanned over 11,000 websites, internet facing assets of K-12 schools in the US and we found over 60% having vulnerabilities attackers can easily exploit break in, install ransomware and steal data.

So, this along with the FTCs order, should be a wakeup call for the whole K-12 sector to be proactive.”

Follow us on social media for the latest updates in B2B!

Image

Latest

team
When Your Team Becomes the Bottleneck
February 25, 2026

In a candid take on organizational blind spots, Mollie Gaby, Principal at CG Infinity, highlights a hard truth many leaders avoid: sometimes your biggest pain point isn’t your technology or your strategy — it’s your staff. A common red flag is resistance to change. When team members are unwilling to explore new tools, automate…

Read More
asset visibility
Diagnosing Your Capital Asset Health: Why Asset Visibility Is the New Financial Imperative in Healthcare
February 25, 2026

Hospitals and surgery centers own millions of dollars in equipment — but owning assets and having actionable visibility into them are two different things. Most systems maintain inventories, yet many struggle with outdated records, fragmented tracking, and limited insight into useful life or service contracts. With nearly half of U.S. hospitals reporting negative operating…

Read More
CFO
From Public Accounting to CFO: The Leadership Wake-Up Call
February 25, 2026

The CFO seat is being rewritten in real time. Today’s finance leaders are expected to drive growth, lead enterprise-wide systems transformations, and shape AI strategy—while still keeping the close, controls, and capital story airtight. Gartner reports that 59% of finance leaders are already using AI in the finance function, underscoring how rapidly the role is…

Read More
restorative practices
Building Safer Schools Through Restorative Practices
February 24, 2026

School Safety Today podcast, presented by Raptor Technologies. In this episode of Principals of Change, host Dr. Amy Grosso sits down with D’Jon Pitchford, Assistant Principal at Kelly Lane Middle School in Pflugerville ISD, to explore what school safety really means. Pitchford reframes safety as more than physical security—emphasizing trust, restorative practices, campus culture,…

Read More
Related
restorative practices
Software & Technology
Building Safer Schools Through Restorative Practices
February 24, 2026
continuous improvement in education
Healthcare
Continuous Improvement in Education: If You Want Different Outcomes, Change the System
February 24, 2026

School systems across the country are under mounting pressure to improve student outcomes while navigating shifting standards, staffing shortages, and rising expectations around accountability. Yet many reform efforts fall short because they are fragmented and short-term. According to Learning Forward’s Standards for Professional Learning, sustained and job-embedded professional learning is linked to improved educator…

Read More
career-connected
Healthcare
Workforce Alignment, and the New Blueprint for Career-Connected Learning Ecosystems
February 23, 2026

Workforce shortages, shifting federal and state policy, and rising skepticism about the return on investment of a traditional four-year degree have pushed career-connected learning to the forefront of education reform. According to the U.S. Bureau of Labor Statistics, overall employment is expected to increase by nearly 4.7 million jobs between 2022 and 2032, with…

Read More