Cybersécurité ou cybersûreté, pourquoi la sécurité des élèves passe à travers les mailles du filet

Across Canada, schools are continuing to invest in technology-enabled learning. Students are using online platforms daily. Teachers are regularly integrating new tools into classrooms. Students are learning to use technology.

But using it does not always mean understanding how to stay safe, and much like teaching math without financial literacy, it does not always prepare them for the situations they will actually face.

Two Different Problems, Often Treated as One

The terms cybersafety and cybersecurity are often used interchangeably. In practice, they address very different challenges. Cybersecurity focuses on protecting systems, including networks, devices, infrastructure, and organizational data. It’s what people are trained and paid to do, it is an industry with specialized roles focused on protecting systems and organizations. Cybersafety focuses on protecting people, including how individuals interact online, how they assess trust, and how they make decisions in digital environments. It’s what you do for yourself, your family, and your day-to-day life on personal devices and accounts.

The distinction is critical.

Cybersecurity protects systems. Cybersafety protects kids.

While there is some overlap, such as passwords, phishing awareness, and privacy, most of what students experience online falls outside traditional cybersecurity.

Where Schools Are Currently Focused

Across provinces, technology use and digital literacy are becoming more embedded in education. In Ontario, students are expected to demonstrate responsible online behaviour, evaluate sources, and understand digital citizenship. In British Columbia, curriculum includes digital literacy frameworks, privacy awareness, and ethical technology use. In Alberta, newer curriculum directions emphasize digital responsibility, online interactions, and appropriate use of technology. These are all important and necessary but they tend to focus on responsible behaviour, general awareness, and appropriate use. What is missing is preparation for manipulation, coercion, data exploitation, and high pressure decision making in real time.

In other words, students are taught how they should behave online, but not always how online environments behave toward them.

What This Looks Like in Real Life

Across Canada, law enforcement agencies, including the RCMP and local police services, are issuing repeated warnings about the types of online harms affecting youth today. These are not hypothetical risks. They are documented, increasing, and in many cases, escalating.The RCMP and police services across Canada have identified sextortion as one of the fastest growing online threats targeting youth. In these cases, contact is made through social media or gaming platforms, trust is built quickly, images are shared or coerced, and threats and extortion begin immediately.

Police report that these interactions are often highly organized, fast moving, and designed to create urgency and fear. In some cases, the consequences have included severe emotional distress, self harm, and suicide. The RCMP has also warned about organized online groups targeting youth, encouraging self harm, violence, and other harmful behaviours. These interactions often begin in familiar platforms, move into private channels, and escalate through pressure and normalization. Online exploitation often begins with casual conversations, shared interests, and familiar environments like games or social apps.

Over time, these interactions build trust, shift boundaries, and become manipulative. Many of these situations are difficult to detect early, even for adults. Students are also engaging with free apps, AI tools, and digital platforms used in and outside the classroom. These platforms collect behavioural data, preferences, and interaction patterns. This data is used to shape content, influence behaviour, and build detailed user profiles.

Why This Matters for Schools

None of these incidents begin with a system breach, a firewall failure, or a technical vulnerability. They begin with a message, a conversation, or a moment of trust. And that is the gap. Students are navigating these risks on personal and school provided devices, across platforms connected to their learning and social lives, often without structured guidance on how to respond. At the same time, schools are expected to support student well-being, educators are expected to respond when something goes wrong, and systems are expected to prevent harm.

A comprehensive approach to student safety online includes both cybersecurity (secure infrastructure, protected platforms, and IT controls and policies) and cybersafety (real world scenario training, understanding how threats actually work, decision making skills in online environments, and clear response strategies).

These are not competing priorities. They solve different problems, and both are necessary.

A Shift in Perspective

For educators, administrators, and funders, this requires asking different questions. Are we preparing students for real world interactions? Are we focusing on tools, or on behaviour and decision making? Are we addressing technical risks, or human ones? Because the reality is that the most common risks students face online are subtle, difficult to detect, and designed to feel trustworthy.

Recognizing the difference between cybersafety and cybersecurity is not about changing curriculum or replacing existing efforts. It is about expanding the lens.

For educators, this can mean:

• going beyond general awareness to discuss how real situations unfold
• creating space for conversations about uncertainty, pressure, and decision making
• helping students understand not just what to do, but what to do when something feels unclear

For parents, it can mean:

• shifting conversations from rules to understanding
• asking how children are interacting online, not just how much time they are spending
• reinforcing that they can come forward without fear of consequences if something goes wrong

For school boards and leadership, it can mean:

• recognizing that student safety online is not fully addressed through technology or policy alone
• ensuring that approaches to digital safety include real-world scenarios and human behaviour
• supporting educators with the tools and training needed to address these challenges confidently

Using technology and being safe within it are not the same thing, and preparing students for the former does not automatically prepare them for the latter.

In our next post, we look at how today’s online risks are designed to feel familiar, and why that makes them harder to detect and respond to.