All News

Department for Education's Cyber Security Hub graphic, showing digital protection for schools against cyber threats.

Cyber attacks on schools are no longer a distant threat. The Department for Education (DfE) has just launched a dedicated Cyber Security Hub to help schools navigate this growing danger, and as a school leader, it's worth understanding exactly what it offers and why it matters.  If you were at our conference in February you were lucky enough to see a preview of the tool!

Know your IT Support Provider graphic. IT Support Due Diligence Directory for schools and colleges.

Finding the right IT partner and support provider is a big decision.  Due diligence for IT Support isn't just about who can 'fix computers', it's about ensuring standards are followed and they work with you to meet your organisation's strategy. Data Protection Education has a DfE IT Support Tracker and Supplier Due Diligence Directory to provide support and guidance as well as tracking your progress.

The Government Cyber Action Plan 2026 document. UK public sector cyber security strategy.

The Government Cyber Action Plan, published in January 2026, sets out a radical shift in how the UK public sector manages cyber security and digital resilience. It moves away from fragmented, siloed defences toward a "Defend as One" model led by a new Government Cyber Unit within the Department for Science, Innovation and Technology (DSIT).

  1. Shareable Snippet: Be Cyber Ready
  2. What does the technology in schools survey tell us?
  3. Four London councils hit by cyber attacks - Hackney, Westminster, Kensington & Chelsea, and Hammersmith & Fulham
  4. IT Support Standards for Schools and Colleges Guidance (DfE Digital Standards)
  5. October 31. On the road to improving cyber resilience
  6. October 30. Cyber Support
  7. October 29. Admin Controls & Accounts
  8. October 28. Phishing: Don't Take the Bait!
  9. October 27. Passwords
  10. October 26. Physical Security of Digital Assets
  11. October 25. Server Security: Protecting Your Digital Core
  12. October 24. Backups: Your Recovery Safety Net
  13. October 23. Filtering and Monitoring
  14. October 22. Hardware: Printers
  15. October 21. Hardware: Asset Management
  16. October 20. Hardware: Safe disposal
  17. October 19. Anti-virus/anti-malware
  18. October 18. Regular Updates: Patching Against Threats
  19. October 17. Access Control: Managing User Privileges
  20. October 16. Access Control: Securing Your Digital Gateways (Wi-Fi & Networks)
  21. October 15. Access Control: Securing Your Home Office (Working From Home)
  22. October 14. Access Control : (Multi-factor authentication)
  23. October 13. Cyber Security Awareness
  24. October 12. Training: Empowering your human firewall
  25. October 11. Policies and Procedures: Cyber Blueprint
  26. October 10. Understanding Your Cyber Posture
  27. Time's Ticking: Windows 10 support ends in October 2025!
  28. October 9. A Guide for Education Providers
  29. October 8. How Can Your Organisation Prevent Ransomware Attacks?
  30. October 7: Under Attack: The Reality of Ransomware
  31. October 6: Cyber Action Plan and A Roadmap to Resilience
  32. October 5: Cyber Responsibilities - We're All in This Together
  33. October 4: When a Cyber Attack Hits
  34. October 3: Data Security, the Core of Protection
  35. October 2: Privacy Protection & Safeguarding Personal Data
  36. October 1: Welcome to Cyber Security Awareness Month!
  37. Nursery Cyber attack
  38. The NCSC Cyber Assessment Framework
  39. Fraud awareness from the DfE
  40. The Classroom's Dark Side: Cyber crime from the Classroom
  41. KCSIE 2025: Data Protection, AI, and Cyber Security
  42. New e-learning for 2025
  43. The Latest Cyber Threat: The "Murky Panda"
  44. Building a Secure School: Using the ICO Accountability Framework to Meet DfE Digital Standards
  45. Digital Safeguarding: DfE announces statutory DfE Digital Standards
  46. Compliance Reporting from the Knowledge Bank
  47. Social engineering + impersonation = Fraud ≡ cyber deception
  48. Data Breaches 2025 Report Highlights
  49. School cyber attack: Framlingham College, Suffolk
  50. Getting caught in the Scattered Spider web
  51. A Wake-Up Call for Cyber Vigilance - Danger in the Threat Landscape for Everyone
  52. Social Media and Marketing Guidelines and Training
  53. New Governor Resources
  54. Apple removes its highest level data security tool from UK customers
  55. Safer Internet Day, Cyber Security & Data Protection
  56. The Cyber Resilience Championship
  57. The Multiple Dimensions of Supplier Due Diligence
  58. Blacon High School Cyber Attack
  59. The role of Passkeys in Cyber Resilience and Cyber Security
  60. What the proposed Government legislative proposal around cyber crime means
  61. Effectively communicating during a cyber incident
  62. Safeguarding Identity in Microsoft 365: Protecting the UK Education Sector Against Cyber Threats
  63. Cyber Security Best Practice Area
  64. DfE Digital Standards for Schools and Colleges Tracker
  65. New Policies, Documents, Letters and Posters page
  66. Schools and Trusts Best Practice Area
  67. The DPE Retention Schedule
  68. Making the Rounds Update (now includes reporting)
  69. How does the recent global IT outage affect me?
  70. King's speech introduces new bills in relation to cyber security, smart data and digital information
  71. Out of date technology
  72. What's a Cyber Incident and what should we do?
  73. Cyber attack on a school during half term
  74. Free short cyber training for staff
  75. The rise of cyber attacks in schools are causing pupils to miss classes
  76. ICO: Learning from the mistakes of others report
  77. Children's mental health data leaked after a cyber attack
  78. Cyber attack on a Trust; the aftermath
  79. Social Media Best Practice Area
  80. Lettings Best Practice Area
  81. MFA Bombing - What is it?
  82. Product Focus on Checklists : Initial Trust Plan
  83. Product Focus on Checklists : Information and Cyber Security
  84. Product Focus on Checklists : End of Term Checklist
  85. Product Focus on Checklists : Social Media
  86. Cyber Incident Review: The Benefits
  87. Product Focus on Checklists : Lettings
  88. Product Focus on Checklists : Record of Processing
  89. Why Data Should Stay Put: Benefits of Keeping Data in Its Original System
  90. Product Focus on Checklists : Data Retention and Destruction
  91. Product Focus on Checklists : Data Migration
  92. Product Focus on Checklists : Biometrics
  93. Product Focus on Checklists : Supplier Due Diligence
  94. Free Cyber help, advice and training with the Cyber Resilience Centres
  95. The Perils of Paper: The Printing Vulnerability
  96. Product Focus on Checklists : FOI
  97. Product Focus on Checklists : Governors and Data
  98. Product Focus on Checklists : DPIA
  99. Product Focus on Checklists : Site Moves
  100. Product Focus on Checklists : Data Breaches
  101. Product Focus on Checklists : Subject Access Requests
  102. Cyber attack on a University
  103. Product Focus on Checklists : Bring your own device
  104. Product Focus on Checklists : Working out of school/offsite
  105. Cyber Attack on a School
  106. Product Focus on Checklists : Redaction
  107. Product Focus on Checklists : CCTV
  108. Product Focus on Checklists : Clear desk
  109. Product Focus on Checklists : Commitment to compliance
  110. Product Focus on Checklists : Photos and video
  111. Product Focus on Checklists : Passwords
  112. Product Focus on Checklists : Information Classification
  113. Kent Councils Data Breach
  114. Free cyber training for staff
  115. DfE Digital Standards Update
  116. Where is your data stored?
  117. Phishing attacks targeting schools - alert from City of London Police
  118. The ICO reprimands a Multi Academy Trust
  119. CISA and UK NCSC Announce Joint Guidelines for Secure AI System Development
  120. Trust Initial Plan Checklist Update
  121. Update on Advisory for Rhysida Ransomware
  122. Records Management Best Practice Update
  123. The Crime in a Cyber Attack and a Data Breach
  124. NCSC Annual Review is published for 2023
  125. Learning from Data Breaches
  126. Windows 11 security ineffective against attacks on old devices
  127. Trust Initial Plan for Data Protection Compliance (for Multi Academy Trusts)
  128. International Counter Ransomware Initiative 2023 Joint Statement
  129. Google for Education Resources: Helping IT Admins meet DfE digital and technology standards
  130. Top Ten Cyber Security Misconfigurations
  131. ICO Reprimand: company suffered a ransomware attack
  132. The UK Online Safety Bill becomes an Act (Law)
  133. The importance of software updates (PaperCut vulnerability and Rhysida ransomware)
  134. Ransomware, extortion and the cyber crime ecosystem
  135. Cyber Resource: The Cyber Resilience Centre Group
  136. Email and Security: ICO recent guidance
  137. Help after a Cyber Attack/Incident
  138. What to do in the event of a Cyber Attack
  139. How KCSIE is linked to Cyber Strategy
  140. Cyber Crime: AI Generated Phishing Attacks
  141. Cyber Attack: Exam Boards
  142. VICE SOCIETY - Ransomware attacks on schools
  143. Using Tags if you are a group of organisations in the DPE Knowledge Bank
  144. Where's Harry the Hacker?
  145. Be Cyber Aware: USB Sticks
  146. Cyber Insurance in the Public Sector
  147. Types of Cyber Attacks: DDos Attack (Microsoft DDoS Attack in June)
  148. Cyber Attack: Leytonstone School
  149. Be Cyber Aware: Firewalls
  150. Be Cyber Aware: Cyber attacks and transparency. A no blame culture
  151. Cyber Attack: Dorchester School
  152. Knowledge Bank Role Types: Admin, Staff and Trustee
  153. Types of Cyber Attacks: Password Attacks
  154. Be Cyber Aware: Why regular software updates are important
  155. Cyber Attack: Wiltshire School
  156. Keeping your IT systems safe and secure
  157. Why we recommend using PIN codes on printers
  158. Types of Cyber Attacks: DDoS Attacks
  159. Types of Cyber Attacks: Phishing
  160. Redaction Guidelines Updated
  161. Types of Cyber Attacks: The Insider Threat
  162. Why your data is profitable to cyber criminals
  163. Using WhatsApp in Schools
  164. Knowledge Bank Updates
  165. Types of malware and how they are linked to data protection
  166. Windows Server 2012 & 2012 R2 Retirement
  167. How to contact us for support, subject access requests, data breaches and FOI's
  168. How a school fought back after a cyberattack
  169. Types of Cyber Attacks - Credential Stuffing
  170. January Cyber update - How Can Schools Help Prevent Cyber Attacks?
  171. Assigning courses to staff using to-dos
  172. The Education sector now at highest risk of cyber attacks
  173. Cyber Attacks
  174. Best Practice for Managing Photos and Video
  175. Compliance Manager released
  176. Emails – good practice and minimising the risk of a data breach

Search