Critical Infrastructure Protection: Education Should Take Additional Steps to Help Protect K-12 Schools from Cyber Threats, Report to Congressional Requesters [open pdf - 1MB]
From the Highlights: "When the COVID-19 [coronavirus disease 2019] pandemic forced the closure of schools across the nation, many K-12 [kindergarten through twelfth grade] schools moved from in-person to remote education, increasing their dependence on IT [information technology] and making them potentially more vulnerable to cyberattacks. Education Facilities, including K-12 schools, is one of the nation's critical infrastructure subsectors. Several agencies have a role in protecting the subsector. GAO [Government Accountability Office] was asked to review cybersecurity in K-12 schools. The objective of this report is to determine the extent that federal agencies have assisted schools in protecting themselves from cyber threats. To do so, GAO identified laws and federal guidance that specify the roles and responsibilities of federal agencies to assist schools in protecting against cyber threats. GAO analyzed documentation of the types of products and services federal agencies have in place to identify, protect, detect, respond, and recover from attacks. In addition, GAO interviewed federal officials about such products and services they offer to K-12 schools."
Government Accountability Office: http://www.gao.gov/