Ransomware attacks on K‑12 districts and higher‑education institutions rose in 2025, with 251 incidents worldwide and the U.S. accounting for the bulk of reported breaches, according to a new analysis. The largest confirmed breach at the University of Phoenix affected nearly 3.5 million people; several Ivy League and large research universities reported significant data exposures. Security analysts traced many intrusions to exploitation of third‑party software vulnerabilities and nation‑state‑linked ransomware rings. The incidents exposed millions of records, highlighted gaps in vendor risk management, and prompted renewed calls for federal and state investment in cybersecurity for educational institutions and stricter third‑party controls.