Why Cyber-Attacks in Schools Are Surging in 2025

The Rise of Cyber-Attacks in School

Cyber-Attacks are surging in 2025 and schools are falling prey to attacks at an alarming level.

New global research reveals that educational institutions are now the most targeted sector in the world, facing an average of 4,484 attacks per week during the first quarter of this year alone. That’s more than any other industry, including government agencies and telecoms. Nationally, GOV.UK reported 52% of Primary Schools and 71% of High Schools have identified breaches or attacks in the past year.

So, what’s behind this worrying trend? And more importantly, what can be done to safeguard against cyber-attacks in school?

Why Schools Are Now Prime Targets for Cyber-Attacks in 2025

UK schools have embraced digital technology at a rapid pace and increasingly rely on digital platforms for teaching, administration, and safeguarding. Digital technology has brought huge benefits but it has also opened up new vulnerabilities. Unfortunately, cybercriminals are exploiting these vulnerabilities, knowing that many educational institutions hold a wealth of sensitive information – yet often have low levels of protection.

Cyber-attacks in school can have severe consequences:

• Disruption to learning
• Loss or theft of sensitive data (including pupil records)
• Expensive recovery and reputational damage

But why has the number of cyber-attacks in school risen so dramatically? This increase is being fuelled by the increasing professionalism of cyber-crime. Ransomware and other cyber-attacks have surged because cyber-crime has become big business. Criminal groups are now running like franchises, targeting specific sectors like education. They use highly targeted methods to gain access, often through vulnerabilities in remote learning platforms or supply chain software used by schools.

A particular concern is the rise of ransomware-as-a-service, where attackers rent out tools to launch attacks with minimal expertise. This has led to a 126% global increase in ransomware incidents in the first quarter of 2025 compared to the same period in 2024.

Artificial intelligence (AI) is transforming education but is also contributing to the threat landscape. Criminals are now using AI tools to generate malware, bypass security, and impersonate trusted individuals through AI-generated deepfakes. While many UK schools explore AI for educational purposes, they need to be aware that AI can create new vulnerabilities. Even schools with solid internal defences can be exposed if third-party systems or suppliers are compromised.

A recent study found that over half of UK cyber-attacks last year were linked to third-party providers including those offering AI services. There are also growing concerns around AI coding tools like GitHub Copilot, which may inadvertently introduce malicious code into school networks.

What Schools Can Do

• Regularly update software and security systems
• Provide cyber safety training for staff and students
• Audit third-party suppliers for security risks
• Have an incident response plan in place
• Use AI tools with caution and proper safeguards

In today’s landscape, cybersecurity is no longer just an IT issue — it’s a safeguarding priority. As the education sector becomes more digitised, staying ahead of cyber threats is essential for keeping pupils, staff, and school operations safe.

One Education offers a wide range of cyber security services to help protect against cyber-attacks in school. We also currently offer free cyber security audits. If you are interested, please contact the ICT Team – ictsupport@oneeducation.co.uk