Category: stress

  • K-12 districts are fighting ransomware, but IT teams pay the price

    K-12 districts are fighting ransomware, but IT teams pay the price

    Key points:

    The education sector is making measurable progress in defending against ransomware, with fewer ransom payments, dramatically reduced costs, and faster recovery rates, according to the fifth annual Sophos State of Ransomware in Education report from Sophos.

    Still, these gains are accompanied by mounting pressures on IT teams, who report widespread stress, burnout, and career disruptions following attacks–nearly 40 percent of the 441 IT and cybersecurity leaders surveyed reported dealing with anxiety.

    Over the past five years, ransomware has emerged as one of the most pressing threats to education–with attacks becoming a daily occurrence. Primary and secondary institutions are seen by cybercriminals as “soft targets”–often underfunded, understaffed, and holding highly sensitive data. The consequences are severe: disrupted learning, strained budgets, and growing fears over student and staff privacy. Without stronger defenses, schools risk not only losing vital resources but also the trust of the communities they serve.

    Indicators of success against ransomware

    The new study demonstrates that the education sector is getting better at reacting and responding to ransomware, forcing cybercriminals to evolve their approach. Trending data from the study reveals an increase in attacks where adversaries attempt to extort money without encrypting data. Unfortunately, paying the ransom remains part of the solution for about half of all victims. However, the payment values are dropping significantly, and for those who have experienced data encryption in ransomware attacks, 97 percent were able to recover data in some way. The study found several key indicators of success against ransomware in education:

    • Stopping more attacks: When it comes to blocking attacks before files can be encrypted, both K-12 and higher education institutions reported their highest success rate in four years (67 percent and 38 percent of attacks, respectively).
    • Following the money: In the last year, ransom demands fell 73 percent (an average drop of $2.83M), while average payments dropped from $6M to $800K in lower education and from $4M to $463K in higher education.
    • Plummeting cost of recovery: Outside of ransom payments, average recovery costs dropped 77 percent in higher education and 39 percent in K-12 education. Despite this success, K-12 education reported the highest recovery bill across all industries surveyed.

    Gaps still need to be addressed

    While the education sector has made progress in limiting the impact of ransomware, serious gaps remain. In the Sophos study, 64 percent of victims reported missing or ineffective protection solutions; 66 percent cited a lack of people (either expertise or capacity) to stop attacks; and 67 percent admitted to having security gaps. These risks highlight the critical need for schools to focus on prevention, as cybercriminals develop new techniques, including AI-powered attacks.

    Highlights from the study that shed light on the gaps that still need to be addressed include:

    • AI-powered threats: K-12 education institutions reported that 22 percent of ransomware attacks had origins in phishing. With AI enabling more convincing emails, voice scams, and even deepfakes, schools risk becoming test grounds for emerging tactics.
    • High-value data: Higher education institutions, custodians of AI research and large language model datasets, remain a prime target, with exploited vulnerabilities (35 percent) and security gaps the provider was not aware of (45 percent) as leading weaknesses that were exploited by adversaries.
    • Human toll: Every institution with encrypted data reported impacts on IT staff. Over one in four staff members took leave after an attack, nearly 40 percent reported heightened stress, and more than one-third felt guilt they could not prevent the breach.

    “Ransomware attacks in education don’t just disrupt classrooms, they disrupt communities of students, families, and educators,” said Alexandra Rose, director of CTU Threat Research at Sophos. “While it’s encouraging to see schools strengthening their ability to respond, the real priority must be preventing these attacks in the first place. That requires strong planning and close collaboration with trusted partners, especially as adversaries adopt new tactics, including AI-driven threats.”

    Holding on to the gains

    Based on its work protecting thousands of educational institutions, Sophos experts recommend several steps to maintain momentum and prepare for evolving threats:

    • Focus on prevention: The dramatic success of lower education in stopping ransomware attacks before encryption offers a blueprint for broader public sector organizations. Organizations need to couple their detection and response efforts with preventing attacks before they compromise the organization.
    • Secure funding: Explore new avenues such as the U.S. Federal Communications Commission’s E-Rate subsidies to strengthen networks and firewalls, and the UK’s National Cyber Security Centre initiatives, including its free cyber defense service for schools, to boost overall protection. These resources help schools both prevent and withstand attacks.
    • Unify strategies: Educational institutions should adopt coordinated approaches across sprawling IT estates to close visibility gaps and reduce risks before adversaries can exploit them.
    • Relieve staff burden: Ransomware takes a heavy toll on IT teams. Schools can reduce pressure and extend their capabilities by partnering with trusted providers for managed detection and response (MDR) and other around-the-clock expertise.
    • Strengthen response: Even with stronger prevention, schools must be prepared to respond when incidents occur. They can recover more quickly by building robust incident response plans, running simulations to prepare for real-world scenarios, and enhancing readiness with 24/7/365 services like MDR.

    Data for the State of Ransomware in Education 2025 report comes from a vendor-agnostic survey of 441 IT and cybersecurity leaders – 243 from K-12 education and 198 from higher education institutions hit by ransomware in the past year. The organizations surveyed ranged from 100-5,000 employees and across 17 countries. The survey was conducted between January and March 2025, and respondents were asked about their experience of ransomware over the previous 12 months.

    This press release originally appeared online.

    Latest posts by eSchool Media Contributors (see all)

    Source link

  • Teacher stress levels have surpassed pandemic-era highs

    Teacher stress levels have surpassed pandemic-era highs

    Key points:

    America’s K-12 educators are more stressed than ever, with many considering leaving the profession altogether, according to new survey data from Prodigy Education.

    The Teacher Stress Survey, which polled more than 800 K-12 educators across the U.S., found that nearly half of teachers (45 percent) view the 2024-25 school year as the most stressful of their careers. The surveyed educators were also three times more likely to say that the 2024-25 school year has been the hardest compared to 2020, when they had to teach during the height of the COVID-19 pandemic.

    Student behavior challenges (58 percent), low compensation (44 percent), and administrative demands (28 percent) are driving teacher burnout and turnover at alarming rates. Public school teachers were more likely to report stress from unrealistic workloads, large class sizes, school safety concerns, and student behavior issues than their private school counterparts.

    “The fact that stress levels for so many teachers have exceeded those of the pandemic era should be a wake-up call,” said Dr. Josh Prieur, director of education enablement at Prodigy Education and former assistant principal in the U.S. public school system. “Teachers need tangible, meaningful, and sustained support … every week of the year.”

    Additional key findings include:

    • The vast majority of teachers (95 percent) are experiencing some level of stress, with more than two-thirds (68 percent) reporting moderate to very high stress. K-5 teachers were the most likely to feel extremely/very stressed (33 percent). Sixty-three percent of teachers report that their current stress levels are higher than when they first started teaching. 
    • Nearly one in 10 teachers surveyed (9 percent) are planning to leave the profession this year, while nearly one in four (23 percent) are actively thinking about it. One-third of teachers do not expect to be teaching three years from now, likely because nearly half (48 percent) of teachers don’t feel appreciated for the work that they do.
    • Teachers are finding ways to prioritize their well-being, but time limits and job pressures often get in the way. Seventy-eight percent of teachers say they actively make time for self-care, but nearly half (43 percent) feel guilty for spending time on self-care and 78 percent have skipped self-care due to work demands. Implementing school-provided self-care perks and mandatory self-care breaks would appeal to teachers, with 85 percent and 76 percent taking advantage of each benefit, respectively.
    • Top solutions that would reduce teachers’ stress include a higher salary (59 percent), a four-day school week (33 percent), stronger classroom discipline policies (32 percent), and smaller class sizes (25 percent). Public school teachers were more likely to prefer a shorter week, while private school educators opted for higher pay. 

    “Teacher Appreciation Week should serve as the starting point for building systems that show we value teachers’ time, talent, and well-being,” said Dr. Prieur. “Districts can do this by investing in tools that reduce the burden on teachers, prioritizing time for self-care and implementing policies that reinforce teachers’ value as an ongoing commitment to bettering the profession.”

    This press release originally appeared online.

    Laura Ascione
    Latest posts by Laura Ascione (see all)

    Source link