Teachers are reporting a disturbing new game based on Epstein’s island that has gained popularity among teenagers. While school administrators are attempting to block the game, students are successfully bypassing web filters by downloading the game files directly.
The new challenge lies in monitoring student downloads to prevent the spread of this and other harmful and distracting content.
We’ve put together a few tactics to help admins detect this threat to students’ mental health, cybersecurity, and compliance in Chrome browsers and ChromeOS devices.
Uncontrolled File Downloads Impacting Digital Classroom
Without monitoring file downloads, schools expose themselves to several vulnerabilities that can impact their performance and security. What seems like just another aspect of a broad online safety strategy can significantly influence the daily work of students, teachers, and admins.
- Student Safety: Unmonitored files (especially games, videos, and pictures) may contain age-inappropriate content that can affect children’s development and encourage misbehavior.
- School Cybersecurity: Allowing students to download files from unknown, unofficial, or illegal sources increases the risk of malware being installed on school devices and sensitive data leaks.
- CIPA Compliance: US-based educational institutions should monitor children’s online activity and restrict their access to harmful content. File downloading, when out of control, makes schools non-compliant with this requirement.
- Student Distractions: Downloadable, non-educational files easily distract students; they will always prefer online entertainment to focusing on learning during class.
- Teaching Performance: The lack of control over online content that students can access and download can be frustrating for educators, who must instead manually monitor each student’s device rather than teach.
How to Monitor Student File Downloads on Chromebooks
Blocking games from running on school devices is a common real-world admin challenge. Standard school online safety policies usually restrict access to game sites. However, students are increasingly savvy and creative enough to bypass these web filters.
For example, some students find their way around by downloading and sharing an HTML file containing games so they can run them locally on Chromebooks. It makes them invisible to school filters and practically safe unless:
- Admin blocks the URL of the already downloaded file for the Students OU (in this case, you only restrict access to that specific game file and don’t prevent accessing other similar files in the future)
or
- Admin constantly monitors all file downloads across all the devices and users (note that controlling all the download history for every user manually is very time-consuming and prone to human error)
That said, how about eradicating this issue before a game file (or any distracting, inappropriate, or harmful file) is even being downloaded?
In other words, how to effortlessly audit and prevent unapproved file downloads on school ChromeOS devices?
Detect Game File Downloads, aka Monitor Any File Downloads on Student Chromebooks
Preventing students from downloading game files or other potentially disturbing online content requires a multi-level approach.
It’s not only about identifying the unapproved file and removing it, but also about continuously monitoring student downloads and adjusting filter lenses to the current school’s needs.
Create a comprehensive strategy to control file downloads in Chromebooks and Chrome browsers with the following tactics:
1. Audit Student File Downloads
The file download events audit will give you insights into the files students have already downloaded and their online sources. It allows you to identify websites students often use to download specific files, common formats of these files, and other online activity patterns.
In the Chrome Log Events in Google Admin Console, you can check the file names, size, and their URLs for each file downloaded to ChromeOS local storage. You’ll also find out who downloaded the file and when, as well as its content risk level. Based on that, you can, for instance, add these URLs to the blacklisted websites.
On the other hand, the Downloads Audit in GAT Shield provides admins with all this information and more in a single table for a quick overview. It also allows for advanced filtering by OUs, file types, and data range. Additionally, GAT Shield can automatically alert you when a student downloads a file that matches a specific format, size, or web page.
Google Admin Console vs. GAT Shield for File Download Auditing
| Google Admin Console | GAT Shield | |
| Downloads Insights | Chrome Log Events, which include the file name, size, tab URL, trigger type, the user who downloaded the file, their IP address, when the file was downloaded, and its risk assessment | Downloads Audit, which includes the file name, size, tab URL, who downloaded it and where, the user’s device’s Chrome version, and the IP number, when the user started and finished downloading the file, and where it’s stored now |
| User Experience | Counterintuitive navigation across the different tabs to access the split Chrome logs data | Accessible for a quick audit with a clear interface and an advanced query builder to filter results |
| Alerting Features | No alerting available | Real-time monitoring and customizable alerts triggered when a downloaded file meets specific attributes set by the admin |
2. Restrict Downloading Specific Files
Now, you know what file format, size, and source websites are common among your students. After assessing their risk to the school’s safety, you can disable downloads of them in the Chrome browser.
It’s when GAT Shield comes in handy again. It enables you to set up automated alerts so you get notified the moment a student downloads a file that matches a specific format, size, or web page. After detecting that such a file is about to be downloaded, you can remove it at the user’s end.
| How to Prevent Students from Downloading Game Files? [OUR SOLUTION] For a file containing a game, the admin can configure an alert rule in GAT Shield to detect attempts to download all HTML files from the specific websites. When students try to download it, GAT Shield will block the action, remove the file, and, optionally, show a message explaining what just happened on the user’s screen. Additionally, to maximize prevention, admins can disable extensions used to open game files locally, such as the gn-math extension, from being downloaded and installed on students’ Chromebooks. Click here to learn how to audit and block a specific Chrome extension. |
3. Manage Downloading Multiple Files
Blocking file downloads by type and URL source in Chrome for students should be enough to prevent them from saving unapproved games and other files on their devices.
However, some games and other entertainment software can require multiple downloads. That creates a major risk to the school’s cybersecurity, especially when coming from illegitimate sources. When a student downloads many files simultaneously, they are harder to track and, worse still, they may hide malicious installs.
GAT tools add an extra layer of security to address such cases. With GAT+ and GAT Flow united features, the school admin can set up an alert when students download more than, e.g., 50 files, resulting in the user suspension. Everything works automatically without the admin’s intervention.
GAT Labs is the only provider offering this kind of functionality.
4. Monitor File Downloads in Real-time
With file download audit and alert rules configuration, we’ve just laid the groundwork for keeping students’ download activity under control.
It’s time to start continuous monitoring to ensure no suspicious, harmful, or distracting files make their way to the school’s devices.
The good news is that you’ve already taken the first step. When setting up your alerts, you relied on GAT’s real-time monitoring across the entire school’s domain.
Now, you just need to add a few more customized rules on whatever download action you wish to be aware of (a reminder: it can report downloads of specific file extension, size, URL source, user, and time scope), and rest assured that you’ll be notified of such an incident.
Final Thoughts for Google Admins
Ready to extend your security beyond standard web filtering? Take a step further towards clear visibility into user online activity and effective file management.
Stop students from bypassing web filters to access illegal and harmful content. Monitor file downloads in Chrome browser with GAT Shield to ensure online safety and CIPA compliance.
FAQ: File Download Monitoring in Chrome Browser
How can I monitor student downloads in Chrome to ensure CIPA compliance?
CIPA requires schools to protect children from harmful online content, including files downloaded from the web. To prevent this, implement customized web filtering and online activity monitoring. GAT Labs offers full visibility into each student’s online behavior, historical and real-time data on searches and downloads, as well as automated alerts when potentially inappropriate downloadable content is detected.
Is the Google Admin Console sufficient to track file downloads on managed Chromebooks?
Chrome Log Events, available in the Google Admin Console, provide admins with information on every file downloaded to the school’s devices: name, size, tab URL, trigger type, user account, and risk assessment label. However, it doesn’t enable real-time monitoring of user downloads or alerting admins when such an action occurs across the domain.
How can I set up real-time alerts for suspicious file downloads in Chrome?
GAT Shield allows you to create advanced alert workflows that notify you when students attempt to download a file and can instantly remove it from the device. Whenever you suspect harmful files may have a specific format, name, size, or source, you can configure a customized alert for that kind of file.
Join our newsletter for practical tips on managing, securing, and getting the most out of Google Workspace, designed with Admins and IT teams in mind.
