FlagThis

A significant cyberattack on PowerSchool, an education technology software company, has resulted in the compromise of historical student and teacher data. Multiple companies have confirmed that hackers were able to access and steal all data, going back as far as they had been using PowerSchool’s services. The breach occurred in late December 2024 when an unidentified threat actor gained unauthorized access to the PowerSchool Student Information System (SIS) using stolen credentials. They then utilized the “export data manager” customer support tool to extract the “Students” and “Teachers” database tables, obtaining sensitive information in a CSV file.

The compromised data includes names, postal addresses, and in some cases, Social Security numbers, personally identifiable information, medical information, and grades. Although PowerSchool has not released the exact number of impacted schools, TechCrunch reports multiple affected school districts where hackers accessed "troves of personal data belonging to both current and former students and teachers," as far back as when they first used PowerSchool. The company stated that the attack wasn't a ransomware incident, although it paid the attackers. The impacted system lacked basic security measures, such as multi-factor authentication, leaving a huge amount of student and teacher data vulnerable to exposure.


References :

• databreaches.net: PowerSchool discloses breach affecting hosted and self-hosted school k-12 districts
• malware.news: PowerSchool discloses breach affecting hosted and self-hosted school k-12 districts
• www.techradar.com: PowerSchool confirms it was subject to a cyber attack that resulted in the theft of sensitive student and teacher information.
• www.scworld.com: North American K-12 districts impacted by PowerSchool breach
• gbhackers.com: PowerSchool Hacked – Attackers Accessed Personal Data of Students and Teachers
• gbhackers.com: PowerSchool Hacked – Attackers Accessed Personal Data of Students and Teachers
• securityboulevard.com: Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data
• social.skynetcloud.site: Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data – Source: securityboulevard.com
• ciso2ciso.com: Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data – Source: securityboulevard.com
• securityboulevard.com: Hackers Attack PowerSchool, Expose K-12 Teacher and Student Data
• social.skynetcloud.site: Database tables of student, teacher info stolen from PowerSchool in cyberattack – Source: go.theregister.com
• ciso2ciso.com: Database tables of student, teacher info stolen from PowerSchool in cyberattack – Source: go.theregister.com
• ciso2ciso.com: PowerSchool Reportedly Pays Ransom to Prevent Student Data Leak
• www.techmeme.com: US school districts hit by PowerSchool's December breach say hackers accessed "all" historical student and teacher data; PowerSchool has 50M+ US student records (Carly Page/TechCrunch)
• techcrunch.com: US school districts hit by PowerSchool's December breach say hackers accessed "all" historical student and teacher data; PowerSchool has 50M+ US student records (Carly Page/TechCrunch)
• www.techradar.com: PowerSchool breach worse than thought, company says "all" student and teacher data accessed

Classification:

• HashTags: #PowerSchool #DataBreach #Cyberattack
• Company: PowerSchool
• Target: Students and Teachers
• Product: PowerSchool
• Feature: Data Breach
• Type: DataBreach
• Severity: Major