All News

    You are here:  
  1. Home
  2. All News
A dark image with the word "FRAUD" in white lettering on a black background, with a magnifying glass over the F. Below "FRAUD" are the words "Awareness" in orange text. In the bottom-left corner, a person in a black hoodie and a white mask holds a phone and has a finger to their lips in a shushing gesture. In the bottom-right corner is a circular logo for "Data Protection Officer" with the website "dataprotection.law/education".
Tammy Buchanan
Best Practice Updates

Fraud awareness from the DfE

Given the Public Sector Fraud Authority estimates that every year between £39.9 billion and £58.5 billion of taxpayer's money is subject to fraud and error, it's no wonder the UK Government has published some guidance about fraud awareness.

Read more …

A stylized image of a panda wearing a dark suit and tie, standing in a bamboo forest. The background is a mix of digital circuit patterns and glowing lights. At the bottom, a graphic overlay with the text, "IS THERE A 'MURKY PANDA' ON THE TIMETABLE? THE LATEST CYBER THREAT." The logo for "D NEWS" is in the bottom right corner.
Tammy Buchanan
Information/Cyber Security

The Latest Cyber Threat: The "Murky Panda"

The Murky Panda (also known as Silk Typhoon) is a cyber threat that has had significant activity since 2023 and has targeted government, technology, academic, legal and professional services. Currently there are reports of the threats only in North America, however, as the Murky Panda has previously targeted compromises in the cloud, it is assumed that they will easily transition to attacks further afield. The threat group is a China-nexus group

Read more …

A detailed flowchart titled "Accountability Framework" showing how the ICO (Information Commissioner's Office) framework and DfE (Department for Education) Digital Standard Trackers align. The central hub is "Accountability Framework" with ten radiating branches, each representing a key area: Leadership & Oversight, Risk Management, Policies & Procedures, Individual Rights, Response & Enforcement, Monitoring Verification & Reporting, Transparency, Records Management & Security, Contracts & Data Sharing, and Training & Awareness. Each branch connects to a box labeled "DfE Digital Standard Trackers," with several icons and checklist boxes underneath. The bottom of the image lists various tools and resources, including "Best Practice Library," "Retention Schedule," "Phishing simulations," "Risk Register," and "Accountability Tracker," which are all linked to the main framework. The overall image illustrates a comprehensive system for achieving and tracking data protection compliance in an educational setting.
Tammy Buchanan
Best Practice Updates

Building a Secure School: Using the ICO Accountability Framework to Meet DfE Digital Standards

The ICO Accountability Framework is a crucial tool for any organisation handling personal data, providing a structured approach to data protection compliance. When applied to the Department for Education (DfE) Digital Standards, it becomes a powerful mechanism for schools and trusts to ensure their technology and data practices are not only efficient but also legally compliant and secure.

Read more …

  1. Getting caught in the Scattered Spider web
  2. A Wake-Up Call for Cyber Vigilance - Danger in the Threat Landscape for Everyone
  3. Social Media and Marketing Guidelines and Training
  4. New Governor Resources
  5. Apple removes its highest level data security tool from UK customers
  6. Safer Internet Day, Cyber Security & Data Protection
  7. The Cyber Resilience Championship
  8. The Multiple Dimensions of Supplier Due Diligence
  9. Blacon High School Cyber Attack
  10. The role of Passkeys in Cyber Resilience and Cyber Security
  11. What the proposed Government legislative proposal around cyber crime means
  12. Effectively communicating during a cyber incident
  13. Safeguarding Identity in Microsoft 365: Protecting the UK Education Sector Against Cyber Threats
  14. Cyber Security Best Practice Area
  15. DfE Digital Standards for Schools and Colleges Tracker
  16. New Policies, Documents, Letters and Posters page
  17. Schools and Trusts Best Practice Area
  18. The DPE Retention Schedule
  19. Making the Rounds Update (now includes reporting)
  20. How does the recent global IT outage affect me?
  21. King's speech introduces new bills in relation to cyber security, smart data and digital information
  22. Out of date technology
  23. What's a Cyber Incident and what should we do?
  24. Cyber attack on a school during half term
  25. Free short cyber training for staff
  26. The rise of cyber attacks in schools are causing pupils to miss classes
  27. ICO: Learning from the mistakes of others report
  28. Children's mental health data leaked after a cyber attack
  29. Cyber attack on a Trust; the aftermath
  30. Social Media Best Practice Area
  31. Lettings Best Practice Area
  32. MFA Bombing - What is it?
  33. Product Focus on Checklists : Initial Trust Plan
  34. Product Focus on Checklists : Information and Cyber Security
  35. Product Focus on Checklists : End of Term Checklist
  36. Product Focus on Checklists : Social Media
  37. Cyber Incident Review: The Benefits
  38. Product Focus on Checklists : Lettings
  39. Product Focus on Checklists : Record of Processing
  40. Why Data Should Stay Put: Benefits of Keeping Data in Its Original System
  41. Product Focus on Checklists : Data Retention and Destruction
  42. Product Focus on Checklists : Data Migration
  43. Product Focus on Checklists : Biometrics
  44. Product Focus on Checklists : Supplier Due Diligence
  45. Free Cyber help, advice and training with the Cyber Resilience Centres
  46. The Perils of Paper: The Printing Vulnerability
  47. Product Focus on Checklists : FOI
  48. Product Focus on Checklists : Governors and Data
  49. Product Focus on Checklists : DPIA
  50. Product Focus on Checklists : Site Moves
  51. Product Focus on Checklists : Data Breaches
  52. Product Focus on Checklists : Subject Access Requests
  53. Cyber attack on a University
  54. Product Focus on Checklists : Bring your own device
  55. Product Focus on Checklists : Working out of school/offsite
  56. Cyber Attack on a School
  57. Product Focus on Checklists : Redaction
  58. Product Focus on Checklists : CCTV
  59. Product Focus on Checklists : Clear desk
  60. Product Focus on Checklists : Commitment to compliance
  61. Product Focus on Checklists : Photos and video
  62. Product Focus on Checklists : Passwords
  63. Product Focus on Checklists : Information Classification
  64. Kent Councils Data Breach
  65. Free cyber training for staff
  66. DfE Digital Standards Update
  67. Where is your data stored?
  68. Phishing attacks targeting schools - alert from City of London Police
  69. The ICO reprimands a Multi Academy Trust
  70. CISA and UK NCSC Announce Joint Guidelines for Secure AI System Development
  71. Trust Initial Plan Checklist Update
  72. Update on Advisory for Rhysida Ransomware
  73. Records Management Best Practice Update
  74. The Crime in a Cyber Attack and a Data Breach
  75. NCSC Annual Review is published for 2023
  76. Learning from Data Breaches
  77. Windows 11 security ineffective against attacks on old devices
  78. Trust Initial Plan for Data Protection Compliance (for Multi Academy Trusts)
  79. International Counter Ransomware Initiative 2023 Joint Statement
  80. Google for Education Resources: Helping IT Admins meet DfE digital and technology standards
  81. Top Ten Cyber Security Misconfigurations
  82. ICO Reprimand: company suffered a ransomware attack
  83. The UK Online Safety Bill becomes an Act (Law)
  84. The importance of software updates (PaperCut vulnerability and Rhysida ransomware)
  85. Ransomware, extortion and the cyber crime ecosystem
  86. Cyber Resource: The Cyber Resilience Centre Group
  87. Email and Security: ICO recent guidance
  88. Help after a Cyber Attack/Incident
  89. What to do in the event of a Cyber Attack
  90. How KCSIE is linked to Cyber Strategy
  91. Cyber Crime: AI Generated Phishing Attacks
  92. Cyber Attack: Exam Boards
  93. VICE SOCIETY - Ransomware attacks on schools
  94. Using Tags if you are a group of organisations in the DPE Knowledge Bank
  95. Where's Harry the Hacker?
  96. Be Cyber Aware: USB Sticks
  97. Cyber Insurance in the Public Sector
  98. Types of Cyber Attacks: DDos Attack (Microsoft DDoS Attack in June)
  99. Cyber Attack: Leytonstone School
  100. Be Cyber Aware: Firewalls
  101. Be Cyber Aware: Cyber attacks and transparency. A no blame culture
  102. Cyber Attack: Dorchester School
  103. Knowledge Bank Role Types: Admin, Staff and Trustee
  104. Types of Cyber Attacks: Password Attacks
  105. Be Cyber Aware: Why regular software updates are important
  106. Cyber Attack: Wiltshire School
  107. Keeping your IT systems safe and secure
  108. Why we recommend using PIN codes on printers
  109. Types of Cyber Attacks: DDoS Attacks
  110. Types of Cyber Attacks: Phishing
  111. Redaction Guidelines Updated
  112. Types of Cyber Attacks: The Insider Threat
  113. Why your data is profitable to cyber criminals
  114. Using WhatsApp in Schools
  115. Knowledge Bank Updates
  116. Types of malware and how they are linked to data protection
  117. Windows Server 2012 & 2012 R2 Retirement
  118. How to contact us for support, subject access requests, data breaches and FOI's
  119. How a school fought back after a cyberattack
  120. Types of Cyber Attacks - Credential Stuffing
  121. January Cyber update - How Can Schools Help Prevent Cyber Attacks?
  122. Assigning courses to staff using to-dos
  123. The Education sector now at highest risk of cyber attacks
  124. Cyber Attacks
  125. Best Practice for Managing Photos and Video
  126. Compliance Manager released
  127. Emails – good practice and minimising the risk of a data breach

General news

Information/Cyber Security

Knowledge Bank Updates

Best Practice Updates

Legal

Events & Podcasts

©2026 Data Protection Education Ltd.

Search