Episode 26

A Tech Director's Perspective on School Cyber Threats

Download Subscribe
00:00:00
/
01:18:37
RSS Feed Download (109 MB) Link with Timestamp

October 17th, 2025

1 hr 18 mins 37 secs

Season 2

Link with Timestamp

Download MP3 (109 MB)

Your Hosts

About this Episode

Welcome back to the Scinary Information Nexus! This week, we're joined by a special guest from the educational front lines, Greg Babbitt, the Technology Director at Palmer ISD, for a packed episode you can't afford to miss.

First, we tackle one of the biggest stories of the year: the Salesforce breach. Richard, Brazos, and Joseph break down how the "Scattered Lapsus Hunters" allegedly compromised giants like Disney, Home Depot, and Google through sophisticated OAuth and API attacks. We discuss the billion-dollar ransom, the responsibility of SaaS providers, and what this means for every company that entrusts their data to a third party.

Then, with Greg's expertise, we dive deep into the unique cybersecurity landscape of K-12 education. We explore why the biggest threat is often the human element inside the network and discuss the immense challenges of vetting and securing countless third-party apps and services-from bus routing software to Google Workspace. It's a candid look at the real-world tightrope walk between security, usability, and budget that every school district faces.

In this episode, we discuss:

  • The Salesforce Breach: How OAuth tokens and API keys led to a potential catastrophe.
  • The "Scattered Lapsis Hunters" and their tactics.
  • Why companies like Disney can't just blame their vendors.
  • The C-Suite conversation: Communicating reputational risk to non-technical leadership.
  • The "Human Element": Why training isn't enough to stop phishing.
  • Third-Party Risk in K-12: What happens when you have no leverage over your vendors?
  • The "Free" Trap: Uncovering the hidden security costs of Google Workspace for Education.
  • The importance of a "no-blame" culture when security incidents happen.

Is your organization truly prepared for the risks buried in your supply chain and your own hallways? Let's get into it.

Connect with Scinary Cybersecurity:
https://www.scinary.com
https://x.com/scinarycyber
https://www.linkedin.com/company/scinarycyber/

Cybersecurity #Salesforce #DataBreach #K12 #EdTech #InfoSec #ThirdPartyRisk #CybersecurityPodcast #Education #Phishing