The National Security Cyber Centre (NCSC) is offering free cyber security training for schools in an effort to confront a recent rise in the number of attacks against the sector.
The training package is a scripted powerpoint presentation that offers school staff four steps for building basic cyber security safeguards, including how to defend against phishing attempts, the effective use of passwords, and how to properly secure devices.
The powerpoint presentation can be downloaded from the NCSC website and covers topics like the actors behind cyber attacks, cyber threats from outside or inside schools and provides statistics on school cyber resilience. It is designed to be accessible by any staff member, regardless of their technical knowledge, and once it has been completed they can download a certificate.
The training also covers a number of real-life case studies, and references the 'have i been pwned' database, which alerts users when their details have been published online by hackers.
The move follows last month's updated alert from the NCSC, which warned of a “significant increase” in the number of ransomware attacks against educational institutions, many of which lack the resources to invest in cyber security.
“It is vital that schools have robust cyber security in place, and these new resources and training will help staff to increase protection from attacks,” said Schools Minister Nick Gibb.
Just last month, a ransomware attack forced the Harris Federation to temporarily disable access to its central email system and network-attached devices, leaving 37,000 students across 50 primary and secondary academies throughout London unable to access their coursework or messages.
It's thought the ransomware gang REvil was behind the cyber attack, after the trust's financial records were published on a dark web forum known to be associated with the group.
At the beginning of March, 15 schools across Nottinghamshire also had to shut down their IT networks after the Nova Education Trust was hit by a cyber attack. Schools were unable to access emails or their websites and were not able to conduct lessons remotely.
Attacks against universities are also on the rise - an attack on the University of Hertfordshire last week knocked its entire IT network offline, blocking access to each one of its cloud-based services. This included its Wi-Fi network, student record portal, and email system for both staff and students. Online teaching was also cancelled as a result.
-
The Race Is On for Higher Ed to Adapt: Equity in Hyflex Learning -
Google faces 'first of its kind' class action for search ads overcharging in UKNews Google faces a "first of its kind" £5 billion lawsuit in the UK over accusations it has a monopoly in digital advertising that allows it to overcharge customers.
-
Cleo attack victim list grows as Hertz confirms customer data stolen – and security experts say it won't be the lastNews Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
‘Phishing kits are a force multiplier': Cheap cyber crime kits can be bought on the dark web for less than $25 – and experts warn it’s lowering the barrier of entry for amateur hackersNews Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Healthcare systems are rife with exploits — and ransomware gangs have noticedNews Nearly nine-in-ten healthcare organizations have medical devices that are vulnerable to exploits, and ransomware groups are taking notice.
-
Alleged LockBit developer extradited to the USNews A Russian-Israeli man has been extradited to the US amid accusations of being a key LockBit ransomware developer.
-
February was the worst month on record for ransomware attacks – and one threat group had a field dayNews February 2025 was the worst month on record for the number of ransomware attacks, according to new research from Bitdefender.
-
CISA issues warning over Medusa ransomware after 300 victims from critical sectors impactedNews The Medusa ransomware as a Service operation compromised twice as many organizations at the start of 2025 compared to 2024
-
Warning issued over prolific 'Ghost' ransomware groupNews The Ghost ransomware group is known to act fast and exploit vulnerabilities in public-facing appliances
-
The Zservers takedown is another big win for law enforcementNews LockBit has been dealt another blow by law enforcement after Dutch police took 127 of its servers offline
