Two-thirds of school IT leaders worldwide rated their cybersecurity maturity as moderate.

89% of schools experienced at least one cyber incident in the past year, primarily phishing, unauthorized access, and malware.

74% of schools lack a dedicated cybersecurity specialist in 2025

45% of SMBs cite employee negligence as their biggest cybersecurity concern, particularly acute in the education sector.

92% of school IT leaders expect AI-powered phishing to be the most dangerous threat in the coming year

Nearly 40% of schools feel underprepared for ransomware in 2025

High confidence in cybersecurity among school IT leaders dropped from 30% in 2024 to 18% in 2025

Half of school IT leaders view ransomware as a serious threat to learning continuity in 2025

38% of companies are focusing more on employee cyber education.

51.02% of education organizations reported limited visibility into their entire environment.

49% of AI users in education engage with AI daily.

52% of employees in the education industry have received training on AI safety and data security.

13% of employees in education reported no training in AI tools.

Only 48% of Education professionals report daily use of AI.

59% of Education professionals are very confident in their AI skills.

Top 5 industries by web‑app vulnerability: Education: 35.3%, Retail: 30.9%, Government: 30.4%, Professional Services: 30.1%, Media: 25.7%.

Top 5 industries by API vulnerability: Education: 37.7%, Retail: 29.8%, Media: 18.8%, Government: 18.5%, Professional Services: 10.6%.

In one analysis, education had 37.7% vulnerable APIs.

In one analysis, education had 31% of vulnerable assets across cloud, APIs, and web applications.

In one analysis, education had 35.3% vulnerable web applications.