Data obtained by the Turn To Tara team shows schools have become the No. 1 target for cyber criminals, putting students' most personal information at risk.

In just one year, cyberattacks jumped 151%, according to Check Point Software Technologies - with criminals now targeting more educational institutions than hospitals or even government agencies. "That is an average of over 3,000 attacks per week...think about how staggering that is," says Cindi Carter, Check Point's chief information security officer. Carter says the risk goes far beyond grades - Social Security numbers, medical records and even custody information about children are a goldmine for criminals. She says this is the kind of information that is permanent - things that can't be changed with a password reset.

Some recent examples in the tri-state include a ransomware attack at New Jersey City University that demanded $700,000.

In New York City, the hack last year of PowerSchool, a company that helps schools track tens of millions of students, was billed as the largest breach of American children's personal information to date. "When you think in terms of the recovery, the the lost student education time, the lost payroll for the educators, as well as for those in the school district, that goes into the millions as well," says Carter.

States require schools to report breaches within 72 hours in New Jersey and New York and 48 hours in Connecticut, but there's still no federal law covering K-12, and experts warn schools are often unprepared and underfunded.

"State and local governments need to step up to the plate," says Carter.