Check your system patching
Make sure all the devices your staff use — computers, laptops and phones — are kept up to date. This includes things like web browsers and office apps. Turning on automatic updates is the easiest way to do this.
Check that the built‑in software on your devices (often called firmware) is also up to date. This is updated differently from normal apps, so it’s worth confirming.
Any systems your school uses that can be accessed from the internet must also be kept updated. If these aren’t patched, they can be an easy target for attackers.
Try to keep your main school systems updated too. If something can’t be updated for now, make sure you have other protections in place.
Finally, look again at any systems you already know can’t be updated. With cyber threats on the rise in education, it’s important to check whether keeping those systems as they are is still safe.
We have created a checklist which helps with system patching.
Verify access controls
Use strong, unique passwords
Please make sure the passwords you use for school systems are not the same as passwords you use on personal accounts (like shopping, social media, or home email).
All school passwords should be strong, unique, and changed straight away if they’re not.
The NCSC’s Three Random Words guidance is a simple, recommended way to create safe passwords.
