.jpg)
Cybersecurity has become a defining challenge for schools, colleges, and edtech companies alike. From ransomware attacks disrupting classrooms to multi-million dollar vendor contracts and new state-level compliance mandates, education institutions across the country are grappling with how to protect student data while modernizing their digital infrastructure.
Below is a roundup of recent developments spanning cyberattacks, funding initiatives, staff training programs, and policy updates shaping cybersecurity in education today.
(News) New York State Audit Flags Weak Network Controls at Long Island District
Date: 08 July, 2026
Summary: A state comptroller review found Uniondale schools had not properly managed nonstudent network accounts, leaving thousands of unnecessary logins active and raising the risk of unauthorized access. The district agreed to adopt corrective measures following the findings.
Read more: Newsday
(News) Calgary University Confirms Data Stolen and Deleted in Ransomware Attack
Date: 08 Jul, 2026
Summary: Mount Royal University confirmed an unauthorized actor accessed and stole files from its H drive before deleting the data to hinder recovery, along with departmental files on its J drive. The school is offering credit monitoring to employees but not to students.
Read more: CBC News
(News) Coxsackie-Athens District Tech Director Flags System Vulnerabilities to Board
Date: 02 Jul, 2026
Summary: At a Coxsackie-Athens Central School District board meeting, the director of technology acknowledged the need to fix identified cracks in the system. He raised concerns about how susceptible devices are to breaches and about the district's overall security posture for the whole community.
Read more: YouTube via Pursuit.us Analytics
(Funding) Norfolk Public Schools Budgets for Multi-Layered Cybersecurity Upgrade
Date: 01 Jul, 2026
Summary: Norfolk City Public Schools' proposed FY2027 budget outlines plans to strengthen cybersecurity through multiple layers of protection. Planned investments include advanced endpoint security, round the clock monitoring, file integrity management, vulnerability scanning, SSL renewals and multi-factor authentication.
Read more: Pursuit.us Analytics
(Training) Augusta Technical College Mandates Cyber Threat Awareness Training for Staff
Date: 01 Jul, 2026
Summary: Augusta Technical College's 2025/2026 Biennial Plan lists Cyber Threat Awareness training through KnowBe4 as a mandatory annual offering for faculty and staff. The training sits alongside other required compliance modules like Title IX and hazard communications.
Read more: Pursuit.us Analytics
(Funding) Levittown School District Signs $100K Consultant Contract With Cybersecurity Terms
Date: 01 Jul, 2026
Summary: Levittown Union Free School District approved a one-year, 100,000 dollar contract with Blue Sea Educational Consulting for related student services. The agreement requires the vendor to maintain encryption, access controls and periodic staff training to protect personally identifiable student data under New York Education Law 2-d.
Read more: Pursuit.us Analytics
(Funding) Missouri College Issues RFP for 24/7 SOC and Managed Detection Services
Date: 29 Jun, 2026
Summary: Crowder College is seeking proposals for a fully managed SOC and MDR platform covering roughly 2,500 devices, 85 servers and eight campus locations. The RFP also requests optional add-ons like EDR, email filtering, phishing-resistant MFA and security awareness training, with vendor selection expected by August 17.
Read more: Pursuit.us Analytics
(Analysis) Reporters Break Down Why Edtech Vendors Are Now the Main Target
Date: 25 Jun, 2026
Summary: A Dark Reading roundtable with Cybersecurity Dive and TechTarget explains why attackers increasingly hit learning management systems and ERP vendors instead of individual schools. Panelists say weak school leverage in vendor contracts is a key reason cybersecurity terms rarely get enforced.
Read more: Dark Reading
(News) Monthly Roundup Shows Education Among Top June Cyber Targets
Date: 25 Jun, 2026
Summary: SWK Technologies' June cybersecurity recap highlighted a fresh ShinyHunters campaign against Oracle PeopleSoft servers, with most victims being colleges and universities. The report also noted a related FBI warning about follow on extortion and growing concern over third party vendor risk in the education supply chain.
Read more: SWK Technologies
(News) Oracle Breach Ripples Through Higher Ed Vendor Network
Date: 18 Jun, 2026
Summary: Google's Threat Intelligence Group and Mandiant confirmed hackers exploited a critical flaw in Oracle PeopleSoft, affecting over 100 organizations, 68 percent of them in higher education. The breach followed closely after the Canvas hack, underscoring the risks tied to shared enterprise software used across thousands of colleges.
Read more: GovTech
(Funding) Massachusetts Rolls Out First Cybersecurity Grants for Schools
Date: 18 Jun, 2026
Summary: Governor Healey announced Massachusetts' first statewide Cybersecurity Remediation Grant Program, funding municipalities and school districts to fix vulnerabilities found through free Cybersecurity Health Check assessments. Grants support infrastructure upgrades, governance improvements and long term planning for shared cybersecurity services statewide.
Read more: Mass.gov
(News) Illinois High School Shuts Down Summer Programs After Ransomware Hit
Date: 18 Jun, 2026
Summary: Evanston Township High School's phone systems remained down more than a week after a June 7 ransomware attack disrupted internet, computers and emergency systems. The breach also forced relocation of a scheduled ACT exam to another campus.
Read more: Evanston RoundTable
(Policy) Minneota Schools to Roll Out Vulnerability Management Program
Date: 17 Jun, 2026
Summary: Minneota Public School District's board agenda outlines a new technology department initiative to identify and prioritize security patches based on risk assessment. The program will use vulnerability management tools and follow NIST guidelines.
Read more: Pursuit.us Analytics
(News) North Carolina District Rebuilds Network After Criminal Cyberattack
Date: 12 Jun, 2026
Summary: Onslow County Schools detected unauthorized criminal activity across its technology infrastructure on June 9, prompting a joint response from the FBI, Secret Service and state cybersecurity task force. Officials say investigators are still working to determine if student or staff data was taken.
Read more: The Jacksonville Daily News
(News) University of Nottingham Faces Data Exposure After Cyberattack
Date: 11 June, 2026
Summary: A cyberattack on the University of Nottingham led to the exposure and leak of institutional data, becoming the latest reminder of rising cybersecurity risks in higher education. Analysts pointed to universities' complex digital ecosystems, including research, financial and health data, as reasons schools remain frequent targets for cybercriminals.
Read more: COE Security
(News) Former IT Worker Sentenced for Sabotaging Iowa School District
Date: 11 Jun, 2026
Summary: Ezekiel Dean Potter, a former Saydel Community School District IT specialist, was sentenced to 21 months in federal prison for hacking district systems for over a year after his termination. He must also pay nearly 60,000 dollars in restitution to the district and its insurer.
Read more: Des Moines Register
(Training) Gardiner Schools Add New Cybersecurity Awareness Courses for Staff
Date: 10 Jun, 2026
Summary: Gardiner Public School Districts #7 and #4 board agenda notes the rollout of 8 new cybersecurity awareness courses starting in FY26 through SafeSchools. The courses will be available to all school employees.
Read more: Pursuit.us Analytics
(Funding) Pacific Collegiate Charter Plans to Replace Outdated Firewall and Web Filter
Date: 10 Jun, 2026
Summary: Pacific Collegiate Charter District's board agenda proposes upgrading its firewall and web filter, both of which are over 15 years old and have reached end of life. The district plans to combine the two systems into a single new solution.
Read more: Pursuit.us Analytics
(News) Dozens of Colleges Hit in Second ShinyHunters Wave
Date: 09 Jun, 2026
Summary: Google and Mandiant reported that the group behind the Canvas breach also targeted Oracle's PeopleSoft suite, potentially compromising over 100 organizations, mostly in higher education. The attack disrupted human resources and financial systems just weeks after the earlier Canvas disruption during finals.
Read more: Higher Ed Dive
(Education) Texas University Debuts Unique Cybersecurity Degree Track
Date: 09 Jun, 2026
Summary: University of North Texas at Dallas is launching a new Bachelor of Arts in Cybersecurity for fall 2026, designed with input from industry experts to prepare graduates for entry level jobs and early promotions. Texas currently has more than 42,000 open cybersecurity positions.
Read more: UNT Dallas
(Event) Federal Agency Hosts School Cyber Defense Workshop
Date: 28 May, 2026
Summary: CISA's School Safety Task Force held a virtual training session on practical cybersecurity steps for K-12 schools, covering current threats and resilience strategies. The session targeted administrators, IT staff and emergency management professionals across the school safety community.
Read more: CISA
(News) Minnesota District Cancels Classes After Ransomware Hits Printers
Date: 20 May, 2026
Summary: Delano Public Schools suspended classes after a suspected ransomware attack caused printers across the district to spit out pages branded with ransom messages. The district says it has high confidence that student records, Gmail and Google Classroom were not accessed.
Read more: KARE 11
(Funding) Washington Opens Fourth Cybersecurity Funding Round for Schools
Date: 15 May, 2026
Summary: Washington state opened its fourth round of the State and Local Cybersecurity Grant Program, allowing K-12 districts and higher education institutions to apply for funding toward planning, improvements and resilience projects. Each entity may submit up to three prioritized proposals.
Read more: WaTech
(News) Canvas Outage Exposes Fragile State of School Cybersecurity
Date: 12 May, 2026
Summary: A cyberattack on Instructure's Canvas platform disrupted service for schools nationwide, with ShinyHunters claiming to have stolen 275 million records from about 9,000 institutions. Experts describe education as target rich and resource poor, questioning schools' reliance on third party edtech vendors.
Read more: EdSurge
(News) Florida District Pulls Canvas Access After Vendor Breach
Date: 08 May, 2026
Summary: Orange County Public Schools disabled Canvas access after Instructure notified the district that names, emails, messages and student ID numbers may have been accessed by hackers. Other districts nationwide received similar notices as fallout from the breach continued to spread.
Read more: Education Week
(News) Canvas Restored as Schools Nationwide Recover From Attack
Date: 08 May, 2026
Summary: Instructure said Canvas was back online for most users a day after a cyberattack knocked the platform offline during finals week at universities across the country. The breach reportedly exposed student ID numbers, email addresses, names and platform messages.
Read more: ABC7 San Francisco
(News) Global Ed Tech Hack Rattles University of Michigan and Other Schools
Date: 07 May, 2026
Summary: Thousands of school districts and universities, including the University of Michigan and Wayne State, were listed among victims of a massive third party breach tied to Instructure's Canvas platform. The hacking group ShinyHunters claimed nearly 8,950 institutions were affected nationwide.
Read more: Fox 2 Detroit
(News) UCLA Learning Platform Knocked Offline in Global Canvas Breach
Date: 07 May, 2026
Summary: A cyberattack tied to the extortion group ShinyHunters barred UCLA students from accessing Bruin Learn, the campus version of Canvas, along with thousands of other schools worldwide. The university disabled local access as a precaution while Instructure worked to resolve the breach.
Read more: Daily Bruin
(News) Ransomware Group Claims Massive Haul From Canvas Hack
Date: 06 May, 2026
Summary: Malwarebytes confirmed Instructure suffered a breach of its cloud hosted Canvas environment, with ShinyHunters claiming roughly 275 million stolen records. The group reportedly shared a list of over 8,800 impacted school districts, universities and online platforms with security researchers.
Read more: Malwarebytes
(News) Hackers Threaten Mass Leak Unless Ed Tech Giant Pays
Date: 05 May, 2026
Summary: ShinyHunters demanded Instructure pay a ransom or face a leak of billions of private student and teacher messages after breaching Canvas. Experts noted the attack reflects a broader pattern of targeting shared platforms instead of individual campuses to maximize impact.
Read more: Inside Higher Ed
(Analysis) What Schools Actually Must Do Versus Should Do on Cyber
Date: 04 May, 2026
Summary: An analysis breaks down where federal and state laws like FERPA, COPPA and CIPA set only minimum requirements for school cybersecurity, versus where best practices go further. It highlights how state laws such as New York's Education Law 2-d add stricter vendor obligations.
Read more: Cybernut
(News) Arkansas District Loses Millions in Wire Fraud Scheme
Date: 29 Apr, 2026
Summary: Pine Bluff School District fell victim to a phishing enabled wire transfer scam after a fraudulent invoice was inserted into a compromised employee's email thread. Officials say a substantial portion of the more than three million dollars stolen is expected to be recovered.
Read more: KARK
(News) Northern Ireland Schools Confirm Personal Data Accessed in Cyberattack
Date: 16 Apr, 2026
Summary: The Education Authority confirmed a targeted attack on a small number of Northern Ireland schools resulted in personal data being accessed, updating earlier claims that no data had been exfiltrated. Police and the Information Commissioner's Office are involved following an arrest in the case.
Read more: The Cyber Express
(News) Minnesota School District Closes After Network Intrusion
Date: 13 Apr, 2026
Summary: Spring Lake Park school district canceled classes after its technology team discovered an outside actor had accessed internal school systems over the weekend. The incident added to a string of recent cyberattacks affecting Minnesota school districts.
Read more: MPR News
(Legal) PowerSchool and Chicago Schools Settle Breach Lawsuit for Millions
Date: 02 Apr, 2026
Summary: A class action settlement requires edtech company PowerSchool and Chicago Public Schools to pay a combined 17.25 million dollars over a prior data breach affecting student records. The case adds to mounting legal pressure on edtech vendors following major education sector breaches.
Read more: Parent Coalition for Student Privacy
(News) Pennsylvania College Locked Out by Ransomware Attack
Date: 30 Mar, 2026
Summary: Community College of Beaver County disclosed a ransomware attack that encrypted all college data, blocking access to grades, transcripts and financial systems. The college immediately closed campus and locked down IT resources, highlighting the reporting duties colleges face under Title IV and state breach laws.
Read more: McGuireWoods
(Opinion) Advocates Push Congress to Update Aging Student Privacy Law
Date: 23 Mar, 2026
Summary: An opinion piece argues that FERPA, written for a paper record era, no longer reflects how schools use digital dashboards and data sharing today. The author calls on Congress to modernize the law to strengthen security while preserving parents' access to student information.
Read more: The 74
(Education) Pennsylvania University Adds New Cybersecurity Bachelor's Program
Date: 19 Feb, 2026
Summary: Arcadia University announced a new Bachelor of Science in Cybersecurity starting fall 2026, combining embedded certifications with hands on practice, mentorship and study abroad options. The program aims to make graduates job ready in network security, threat detection and digital forensics.
Read more: PR Newswire
(Report) Report Shows US Leads World in School Ransomware Attacks
Date: 05 Feb, 2026
Summary: A Comparitech report found 251 ransomware attacks hit educational institutions worldwide in 2025, with the US recording the highest count at 130. The report also linked the decline in federal cybersecurity support programs to growing vulnerability among financially strapped school districts.
Read more: K-12 Dive
(Opinion) 2026 Marks Shift From Edtech Self Regulation to Enforcement
Date: 07 Jan, 2026
Summary: A commentary argues 2026 ends the edtech sector's era of light touch privacy oversight, citing new state laws banning geolocation data sales and age verification rules that trigger stricter COPPA protections. Vendors will now need documented proof of security practices to win school contracts.
Read more: Chris R Dale on Substack
Selling Cybersecurity Tools and Services to Educational Institutions?
These stories show schools and districts are actively budgeting, approving contracts, and issuing RFPs for cybersecurity right now. For vendors, spotting these signals early is the hard part.
Pursuit scans board minutes, budgets, RFPs, and contracts across thousands of school districts, colleges, and universities, surfacing buying signals like the ones above in real time. Instead of manually digging through PDFs, your team gets instant visibility into who's budgeting for cybersecurity and who to contact.
See which institutions near you are buying. Book a demo with Pursuit.
Identify buyers 6–18 months before RFP drops
170K+ SLED entities tracked 24/7 with AI
Auto-syncs deal signals to your CRM
Active buyer signals delivered daily on emails and Slack
Free Chrome extension for instant intel
Decision makers’ contact info with ready-to-use outreach drafts
Trusted by 200+ govtech teams
