Phishing Awareness: Considerations for Schools


Educating students and staff about phishing attacks is essential to protecting schools, according to Matt Britland, Director of IT and digital strategy at Alleyn’s School in London. In an article for EdExec, Britland said that IT employees often don’t comprehend how hard it is for teachers, students, and other employees to defend themselves against phishing attacks while trying to keep up with their regular workload.

Spreading awareness as often as possible is the key to helping people identify phishing attempts. Britland says faculty should be frequently reminded and educated about these attacks during meetings. They need to be taught to beware of unusual links, requests for sensitive information and credentials, and unexpected documents.

“It is a lot to remember, but vigilance is important and, if staff are careful when looking at emails, most phishing attempts can be spotted and reported to IT support,” Britland said.

For students, Britland says IT security should be included in the school’s curriculum. The ability to protect oneself against online attacks and social engineering is a skill that will benefit people for the rest of their lives.

Britland also recommends simulated phishing tests, which can give faculty and students hands-on experience with phishing attacks, with the added benefit of allowing the school to gauge its security posture. New-school security awareness training can provide teachers, students, and staff with the knowledge they need to keep themselves and their schools safe from cyberattacks.

EdExec has the story:

Free Phishing Security Test

Would your users fall for convincing phishing attacks? Take the first step now and find out before the bad guys do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

PST ResultsHere's how it works:

  • Immediately start your test for up to 100 users (no need to talk to anyone)
  • Select from 20+ languages and customize the phishing test template based on your environment
  • Choose the landing page your users see after they click
  • Show users which red flags they missed, or a 404 page
  • Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
  • See how your organization compares to others in your industry

Go Phishing Now!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

Subscribe To Our Blog

Weak Password Test Contest

Get the latest about social engineering

Subscribe to CyberheistNews