What is ransomware and how to protect against it

Ransomware is a combination of the words ransom and malware, and malware is a combination of malicious and software. Clear so far? Basically, malware is software containing a virus designed to cause problems to computers, networks and devices such as printers or interactive whiteboards.


Ransomware is a growing threat to schools. In 2021-2022,  the education and training sector reported more ransomware attacks to the Australian Cyber Security Centre (ACSC) than any other sector.

The type of malware used in a ransomware attack usually encrypts (locks up) the data held on a network. In school, this could be within any software on the school’s servers (in school) and not in the cloud (online). Cloud software is also vulnerable to attack but usually via an attack on the supplier and not the school.


Once cybercriminals lock the software and the data it holds, the school cannot access it, and they demand a ransom for it to be released. This ransom can run into thousands or millions of dollars or bitcoin.


How does ransomware enter a school? 
Like burglars, cybercriminals find ways to enter the school network through weaknesses and holes. Understanding where these weaknesses are and patching them up protects the school from attacks.


Five things staff can do to keep the school network protected 

  1. Keep software and apps up to date.
  2. Remove old and unused software and apps from your devices, including your mobile phone.
  3. Avoid logging into public wifi as this is often insecure.
  4. Unless permitted to do so, do not access school software, including emails, on personal devices, even if you think you are doing this securely.
  5. Be careful responding to emails that make you feel pressured into doing something, as this may be a phishing email. 

Five ways schools can protect themselves from ransomware

  1. Train staff in the basics of cyber security, including phishing emails.
  2. Install firewalls, configure these appropriately and keep them up to date.
  3. Change default passwords on all routers, devices and software.
  4. Apply the latest software updates to all software and devices. If any devices can’t be kept up to date and are still in use, remove them from the network.
  5. Commission an independent review of your systems, audit your cyber security culture and recommend improvements.

Get in touch to see how we can help protect your school