Cybersecurity Compliance is Only Half the Battle for EdTech

TechCrunch recently reported on accusations levied by the Federal Trade Commission against edtech giant Chegg – the FTC filed a legal complaint earlier this week indicating that Chegg’s lapses in cybersecurity compliance has resulted in numerous separate data breaches in recent years, and that these breaches were avoidable with better cybersecurity practices.

Sai Huda, CEO of CyberCatch, explains that cybersecurity compliance is only the first step in ensuring data security for edtech customers. The knack is ongoing maintenance and management of those security systems to identify and plug holes as needed – with thousands of attacks levied against educational institutions, hackers will always find vulnerabilities and exploit them.

Sai’s Thoughts

“Along with that, there’s gotta be two other things they’ve gotta do. One is they’ve gotta test those controls regularly. So just implementing the hundred eight controls and thinking you’re in compliance, it is just step one, the step 2, 3, 4, 5, 6, 7, 8, 9, 10 are to continuously test those controls because controls will break.

So, the key is to find those control failures, those security holes before the attackers do, and then plug them, and therefore the attackers will not be able to exploit those security holes and will not be able to be successful. The third thing the school sector must do is to have an incident response plan because it’s not a question of if, but when an incident will happen.

So the key is to be able to detect this incident and then to be able to respond so that damage is mitigated so that perhaps ransomware isn’t spread. Perhaps it can be curtailed. Data can be prevented from being stolen. Incident response plan is also key, and it must be implemented. That’s the way to be successful.

K12 schools are definitely in line of sight of attackers. CyberCatch scanned over 11,000 websites, internet facing assets of K-12 schools in the US and we found over 60% having vulnerabilities attackers can easily exploit break in, install ransomware and steal data.

So, this along with the FTCs order, should be a wakeup call for the whole K-12 sector to be proactive.”

Follow us on social media for the latest updates in B2B!

Image

Latest

Breaking the Cycle and Inspiring Others
July 23, 2024

Nowadays, the traditional path to education is being questioned more than ever and there are numerous stories that provide a beacon of hope for those considering alternative routes. As the number of adults without a high school diploma reaches nearly 22 million in the United States, the importance of understanding and embracing non-traditional education…

Read More
School Safety and Regulatory Compliance
Approaching Safety and Regulatory Compliance with Intent and Purpose
July 23, 2024

In this episode of School Safety Today by Raptor Technologies Michelle Dawn Mooney sat down with special guest, Carrie Mockler, the Vice President of Operations at PublicSchoolWORKS, a Raptor Technologies company. PublicSchoolWORKS is a fully automated, all-in-one learning management system for online training for school staff and a comprehensive risk management program. Key Takeaways: •…

Read More
The Power of Self-Compassion in Leadership and Cognitive Diversity Can Transform Workplaces
July 23, 2024

Mental health and a sense of belonging are critical issues in today’s workplaces. So much that it is essential to practice self-compassion and form a better understanding of cognitive diversity. Leaders today must navigate the complexities of fostering connection and reducing isolation among their teams. Recent studies indicate that 40 percent of employees feel…

Read More
Knox Kronenberg
Passion, Nature, and Fine Art Photography with Knox Kronenberg
July 23, 2024

In the ever-evolving world of fine art photography, capturing the intersection of the old and the new is both a challenge and an art form in itself. Knox Kronenberg, a prominent photographer based in Austin, Texas, embodies this intersection through his work, which uniquely blends historical elements with modern contexts. As technology advances and…

Read More