Privacy & Security

Large, Well-Off Suburban Districts Most Likely to Get Hacked

By Alyson Klein — October 15, 2020 2 min read
  • Save to favorites
  • Print

Big. Wealthy. Suburban. Those are the school districts most likely to report a data breach, according to a report released Thursday by the Government Accountability Office, Congress’ investigative arm. Cybersecurity is an especially sensitive issue right now, as schools around the country are operating virtually to avoid spreading COVID-19.

The agency found that districts where 25 percent or fewer students are eligible for free or reduced-price lunch comprised 26 percent of reported breaches, although they make up only 15 percent of all districts across the country.

And it found that suburban districts were more likely to be the target of attacks than urban or rural districts. Suburban districts made up 61 percent of districts with breaches, although they are only 39 percent of school districts overall. On the other hand, rural districts comprised 21 percent of districts with reported breaches even though they make up 42 percent of school districts overall. Urban districts comprise 19 percent of all districts, but 17 percent of districts with reported data breaches.

What’s more, larger districts also tend to be targets of reported attacks more often than smaller districts. School districts with fewer than 1,000 students comprise 60 percent of all districts, but just 18 percent of those with reported hacks. Meanwhile, districts with more than 10,000 students make up just 5 percent of districts overall, but comprised 30 percent of reported hacks,

Why might that be? Experts who spoke to the GAO said that, for one thing, it might be easier to target larger districts since they are likely to have more staff members and, therefore, more people to respond to a potential phishing email. And bigger, wealthier districts are more likely to use more technology than smaller, poorer districts, which also provides more opportunities for a breach. Wealthy, large, suburban districts are also more likely to have people constantly monitoring their networks (such as a chief technology officer) and may notice an attack which less well-resourced district may not.

More than half of data breaches are intentional, the report found, while about a quarter are accidental. When the breach was intentional, students were most often responsible. And grade changes were the most common motivation. When the breach was an accident, staff were most often responsible. For instance, staffers might email data to the wrong recipients or post it on a public website, which is considered a breach.

The GAO’s analysis relied on data from the K-12 Cybersecurity Research Center, which you can check out here.

Image: Getty

A version of this news article first appeared in the Digital Education blog.

Commenting has been disabled on effective Sept. 8. Please visit our FAQ section for more details. To get in touch with us visit our contact page, follow us on social media, or submit a Letter to the Editor.


This content is provided by our sponsor. It is not written by and does not necessarily reflect the views of Education Week's editorial staff.
Teaching Webinar
6 Key Trends in Teaching and Learning
As we enter the third school year affected by the pandemic—and a return to the classroom for many—we come better prepared, but questions remain. How will the last year impact teaching and learning this school
Content provided by Instructure
This content is provided by our sponsor. It is not written by and does not necessarily reflect the views of Education Week's editorial staff.
Equity & Diversity Webinar
Leadership for Racial Equity in Schools and Beyond
While the COVID-19 pandemic continues to reveal systemic racial disparities in educational opportunity, there are revelations to which we can and must respond. Through conscientious efforts, using an intentional focus on race, school leaders can
Content provided by Corwin
This content is provided by our sponsor. It is not written by and does not necessarily reflect the views of Education Week's editorial staff.
Equity & Diversity Webinar
Evaluating Equity to Drive District-Wide Action this School Year
Educational leaders are charged with ensuring all students receive equitable access to a high-quality education. Yet equity is more than an action. It is a lens through which we continuously review instructional practices and student
Content provided by BetterLesson

EdWeek Top School Jobs

Teacher Jobs
Search over ten thousand teaching jobs nationwide — elementary, middle, high school and more.
View Jobs
Principal Jobs
Find hundreds of jobs for principals, assistant principals, and other school leadership roles.
View Jobs
Administrator Jobs
Over a thousand district-level jobs: superintendents, directors, more.
View Jobs
Support Staff Jobs
Search thousands of jobs, from paraprofessionals to counselors and more.
View Jobs

Read Next

Privacy & Security Spotlight Spotlight on Lessons Learned: Digital Safety
In this Spotlight, review ways you should be approaching student and system data, discover how others teach digital safety, and more.
Privacy & Security Quiz Quiz: How Much Do You Know About Protecting Students During Remote Learning?
Quiz Yourself: What should you know about storing video content involving students?
Privacy & Security Spotlight Spotlight: Online Student Safety
In this Spotlight, assess possible digital vulnerabilities, learn how students may be partaking in digital self-harm, and more.
Privacy & Security Hackers Post 26,000 Broward School Files Online After District Doesn't Pay Ransom
Hackers who demanded up to $40 million from the Broward School District have now published nearly 26,000 files stolen from district servers.
Scott Travis, South Florida Sun-Sentinel
3 min read
Image shows a glowing futuristic background with lock on digital integrated circuit.
iStock/Getty Images Plus