Security Audit Uncovers Critical Vulnerabilities in Ghana’s Government-Issued Tablets to SHS and TVET Students

A comprehensive security audit led by cybersecurity expert Naa Phamous has revealed critical vulnerabilities surrounding the distribution of government-issued tablets to Senior High School (SHS) and Technical and Vocational Education and Training (TVET) students in Ghana.

The findings expose significant risks that undermine the core educational objectives underpinning the tablet deployment initiative.

The detailed research report, titled “Vulnerabilities in Tablet Distribution to SHS and TVET Students in Ghana,” uncovers a troubling lack of monitoring and control mechanisms, resulting in widespread misuse of the devices. Students have primarily used the tablets for non-educational activities, particularly engaging with social media platforms.

This is particularly concerning given that most social media networks are designed for adult users and often contain age-inappropriate content, which can negatively impact the school environment and student wellbeing.

Moreover, the tablets lack essential security controls and safeguards. This absence of endpoint protection allows unfettered downloading and installation of unauthorised applications, including potentially harmful social media apps and gambling software, posing risks both to students’ digital safety and educational focus.

Data protection protocols are glaringly absent, leading to multiple breaches of sensitive personal information. This gap exposes students’ data to potential abuse and violates privacy standards critical to any responsible ICT deployment in educational settings.

Alarmingly, the report uncovers that some tablets serve as vectors for illegal activities such as drug trafficking and incitement of violence within and beyond school premises. This exploitation not only jeopardizes student safety but also poses a broader threat to community security.

To mitigate these risks, the report strongly recommends the immediate implementation of robust access controls, stringent application whitelisting policies, and comprehensive data protection frameworks.

Equally important is rolling out targeted cybersecurity awareness and digital literacy training for students to foster responsible device use.

He believes this report should serve as an eye-opener for the Ministry of Education and the Ghana Education Service to revise the policy so as to maximize the benefits of the otherwise well-intentioned program of providing tablets to students.