{"id":185339,"date":"2026-02-06T12:50:00","date_gmt":"2026-02-06T17:50:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/06\/ransomware-attacks-against-education-sector-slow-worldwide\/"},"modified":"2026-02-07T08:40:13","modified_gmt":"2026-02-07T13:40:13","slug":"ransomware-attacks-against-education-sector-slow-worldwide","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/02\/06\/ransomware-attacks-against-education-sector-slow-worldwide\/","title":{"rendered":"Ransomware attacks against education sector slow worldwide"},"content":{"rendered":"

Ransomware attacks against education sector slow worldwide<\/a><\/p>\n

https:\/\/www.cybersecuritydive.com\/news\/ransomware-attacks-against-education-sector-slow-worldwide\/811588\/<\/a><\/p>\n

Publish Date: 2026-02-06 12:50:00<\/a><\/p>\n

Source Domain: www.cybersecuritydive.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n

Dive Brief:<\/p>\n

In 2025, there were 251 ransomware attacks on educational institutions worldwide \u2014 of which 94 incidents were confirmed by the targeted organizations, according to a report released Thursday by Comparitech, a cybersecurity and online privacy product review website. Additionally, 3.96 million records were breached among those confirmed attacks.
\nRansomware attacks on the education sector worldwide began to slow down in 2025, with the number of incidents targeting schools, universities and other educational institutions rising slightly, by 2%, compared to the year prior, according to a separate report released last month by Comparitech.
\nThe U.S. had the highest number of education-related ransomware attacks in 2025 with 130, of which 50 were confirmed by Comparitech. Even so, the U.S. saw a 9% decline in the number of ransomware attacks its educational institutions fell victim to between 2024 and 2025.<\/p>\n

Dive Insight:
\nOver the past several years, schools and ed tech companies based in the U.S. have continued to fall victim to cyberattacks, which can often include ransomware. Between July 2023 and December 2024, 82% of K-12 schools experienced a cyber incident, according to a survey by the nonprofit Center for Internet Security.
\nHowever, while the number of total recorded ransomware attacks \u2014 7,419 \u2014 across all sectors in the world jumped 32% from 2024 to 2025, Comparitech said that the \u201cpositive news\u201d is that the education sector did not see a similar trend.
\nEducational institutions saw similar year-over-year attack figures, which could be due to a number of factors, including certain hackers shifting their focus to other industries like manufacturing, the January Comparitech report said.
\nThe average ransom demand in the education sector globally also dropped by 33%, from $694,000 in 2024 to $464,000 in 2025, the latest report said.
\nIn a recent incident in September, Texas’ Uvalde Consolidated Independent School District experienced a ransomware attack and confirmed it in a district Facebook post. The attack forced schools to close for several days after the ransomware was detected within the district\u2019s servers, which includes phones, camera monitoring and visitor management systems, according to Uvalde CISD. \u201cThese systems are crucial for the safety and security of our schools,\u201d the district\u2019s Facebook post said.\u00a0
\nThe district added in a separate Facebook post in late September that Uvalde CISD did not pay a ransom to threat actors and the district\u2019s systems were restored using backups. At the time, Uvalde CISD said there was no evidence of unauthorized access into sensitive or personal information, but an investigation into the incident was underway.\u00a0
\nThough unconfirmed by the school districts, Comparitech also said that Massachusetts\u2019 Fall River Public Schools and Washington\u2019s Franklin Pierce Schools were both targeted in 2025 by threat actors who demanded a ransom payment of $400,000 from each district after the ransomware gang Medusa claimed it stole both school systems\u2019 data. Both districts were included within the top five largest ransom demands in the education industry worldwide last year, Comparitech reported.\u00a0
\nEd tech companies have also been cyberattack victims as seen in mass data breaches of millions of sensitive student records at Illuminate Education in December 2021 and PowerSchool in late 2024. K-12 technology experts foresee the ed tech sector to be held more accountable by government officials at the state and federal levels this year over the issue as tighter, updated federal regulations for the Children Online Privacy Protection Rule and as ongoing state investigations into past ed tech company data breaches roll out.\u00a0
\nIn 2025, the Trump administration eliminated key federal resources to support school districts\u2019 cyberdefense measures, including the shuttering of the U.S. Department of Education\u2019s Office of Educational Technology and the discontinuation of K-12 cybersecurity programs offered through the Multi-State Information Sharing and Analysis Center. Since then, education nonprofits and associations have flagged that financially strapped schools could be increasingly vulnerable to cyberattacks without these crucial federal supports. <\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Ransomware attacks against education sector slow worldwide https:\/\/www.cybersecuritydive.com\/news\/ransomware-attacks-against-education-sector-slow-worldwide\/811588\/ Publish Date: 2026-02-06 12:50:00 Source Domain: www.cybersecuritydive.com…<\/p>\n","protected":false},"author":1,"featured_media":185340,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/imgproxy.divecdn.com\/7eClIEpkaqdDq-BCzSLXICE27sGjrfOYZFN7uyEmnlo\/g:ce\/rs:fit:770:435\/Z3M6Ly9kaXZlc2l0ZS1zdG9yYWdlL2RpdmVpbWFnZS9HZXR0eUltYWdlcy0xMzk5OTgwMDQ2LmpwZw==.webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24],"class_list":["post-185339","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/185339"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=185339"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/185339\/revisions"}],"predecessor-version":[{"id":185341,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/185339\/revisions\/185341"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/185340"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=185339"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=185339"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=185339"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}