Back-to-School Cybersecurity Tips for Kids, Parents, and Teachers

It’s back-to-school season, which means routines are changing for school-age kids as well as their caregivers and teachers. The days of relying strictly on papers and pencils are behind us. Educational institutions—from preschools to universities—now rely heavily on mobile and online applications, for everything from communications to scheduling to assignment tracking and completion. Now more than ever, it’s time to make cybersecurity more than just an extracurricular activity.

Below are three key tips for students, teachers, and parents to keep in mind this school year, as well as several “extra credit” resources for those who really want to get ahead of the curve.

Cybersecurity tip #1: Beware of phish

Fraudulent emails, text messages, and social media posts are among the favorite tricks cybercriminals use to lure unsuspecting users into downloading dangerous attachments, clicking malicious links, and/or revealing sensitive information (like financial, personal, or business data). These seemingly innocent communications come with nasty side effects, like ransomware and other malware infections, compromised accounts, and identity theft.

Phishing is a threat to individuals of all ages; don’t think it can’t happen to you or your kids. Cybercriminals are smart; they will use scare tactics, amazing offers, and other traps that create a false sense of urgency, prompting you to click or download right away. Kids can be particularly susceptible to messages that reference popular applications and make promises of free image filters, game cheat codes, or special power-ups, for example—but plenty of adults also fall for these kinds of “too good to be true” offers.

A simple advice can serve you well: Stop and think. Before you interact with a message or post—particularly one that is unexpected or unsolicited—consider the potential consequences if you’re actually dealing with a scam. Could you infect your device? Would you lose money? Could a fraudster get ahold of your account login information? There are real, far-reaching ramifications to falling for a phishing attack.

Caregivers and teachers should take the time to instruct kids of all ages to think about these risks as well (or, better yet, tell them to check with an adult before clicking anything they aren’t sure about). It’s never too early (or too late) to start building a solid cybersecurity foundation.

EXTRA CREDIT:
Three Keys to Avoiding Phishing Emails and Ransomware Attacks
How Scammers Prey on Big-Ticket Events
Wombat Vlog: Identity Theft Protection and PII Security

Cybersecurity tip #2: Get smart about mobile security

We are living in an increasingly interconnected world, and much of that connectivity is facilitated by the devices we carry with us every day. Mobile devices are particularly vulnerable because their portability means they are more likely to be lost or stolen, putting sensitive data in jeopardy. In addition, smartphones and tablets are app-driven, and many applications can expose these devices to unnecessary risk.

The following action items can help improve security on mobile devices:

• Treat mobile devices like cash 
  You wouldn’t leave a $100 bill unguarded in a public place. The same though process should be applied to smartphones and tablets. Know where your devices are at all times and keep them safely within your control when you are outside of your home.
• Research apps before downloading
  There’s no arguing this point: Not all applications are safe. Those found on non-mainstream channels are particularly dangerous (and should be avoided), but even apps on Google Play, iTunes, Amazon, and other popular stores can be dangerous. Take the time to read reviews, search online, and check permissions before you download (see the Extra Credit links for more advice on this). If you install an application that has broad access permissions, you expose your data to untrustworthy sources.
• Restrict your activities on free WiFi networks 
  The lure of open-access and free WiFi networks (i.e., those that don’t require passwords) is strong because these hotspots allow you to operate your devices without impacting your data plan. But be warned: free WiFi can be costly in other ways. Cybercriminals can easily “snoop” on unsecured WiFi connections and steal passwords and other data. And in some cases, hackers set up malicious networks near popular locations (like airports, cafes, and hotels) to gain direct access to your device. Known, password-protected network are always your safest bet. But if you (or your kids) must use free WiFi, check with an establishment to make sure a network is legitimate before you connect, and avoid entering passwords, sending personal information, and making purchases while on an unsecured connection.
• Regularly update your operating system and trusted applications
  Maintenance is a key component of mobile security. It’s important to update your apps regularly to take advantage of bug fixes and security enhancements. And be sure to run operating system updates as soon as they are available as these are often pushed out to counter known vulnerabilities.

EXTRA CREDIT:
School’s Out for Summer… but Risky WiFi Is Always in Season
Three Mobile Security Habits to Implement Today
What Pokemon GO Is Teaching Us About Mobile Device Security
Why It’s Important to Update Software, Plug-Ins, and Applications

Cybersecurity tip #3: Don’t overshare on social media

Social media posts are intended for public consumption—a somewhat scary proposition given that many of us don’t have personal relationships with the people who follow and friend us on social channels. When you consider what is being shared with people you don’t really know you begin to realize that, often, sharing is really oversharing.

Students in particular should be made aware that the photos, observations, and activities that are posted on social media can have an impact far beyond a circle of online friends and followers. A recent Kaplan Test Prep survey noted that 35% of college admissions officers check social media sites to learn more about applicants, with 42% reporting that their findings had a negative impact on a candidate’s likelihood of acceptance. The numbers are even higher with prospective employers: CareerBuilder’s 2016 social media recruitment survey indicated that 60% of employers research job candidates on social media; here, 49% said that the results of that research caused them to reject an applicant.

A good rule of thumb is to regard all social posts and commentary as public content; privacy settings can only protect you to a point given that anyone can take and share screen shots of posts. This concept should be stressed to new and experienced users alike, particularly children. Photos and comments won’t necessarily “disappear,” and copy/paste functions can allow posts to live forever. 

EXTRA CREDIT:
Three Social Media Habits to Implement Today
Oversharing on Social Media Can Impact More Than Your Reputation
12 Things Students Should Never Do on Social Media