Phishing, and Why it Matters in Education

We’ve all heard the term phishing, but not everyone knows exactly what it means—or how it might affect them. Right now, the education sector is a major target. In fact, as of 2025, 89% of UK primary and secondary schools have experienced a phishing attack.

What Is Phishing?

Phishing is a type of cyber fraud where attackers pretend to be someone trustworthy—like a bank, Amazon, or even a colleague—in order to trick people into giving away sensitive information or money.

The most common method is through email. Think of those messages claiming there’s an issue with your bank account or Amazon order, urging you to click a link and “verify” your details. The link takes you to a fake site, and just like that, your account could be compromised—or worse, your email could be used to target others.

How to Spot a Phishing Attempt

• Urgent or threatening tone – “Act now!” or “Your account will be locked!”
• Poor spelling or grammar – Real companies usually proofread.
• Suspicious links – Hover over them to check where they really lead.
• Unexpected attachments – These could contain malware.
• Generic greetings – “Dear customer” instead of your name.
• Odd email addresses – The display name may look familiar, but check the full email address for inconsistencies.

What You Can Do

If you’re worried about phishing risks at your school, Interm IT offers a free phishing simulation. This helps identify how many staff might click a suspicious link or open a dodgy attachment. From there, you can deliver tailored training to reduce your risk and build awareness across your team.

If you would like to learn more, please email admin@intermit.co.uk

Article written by Steve Roberts – Technical Director