PowerSchool sent a letter to affected districts stating an unauthorized party accessed sensitive data within the PowerSchool Student Information System using compromised credentials. The breach occurred on Dec. 28.
Gokhan Kul, a cybersecurity expert, described the breach as "concerning" because it directly involves minors, educators, and their families, indicating potential risks from exposed sensitive information.
The Massachusetts Department of Elementary and Secondary Education is aware of 195 school districts and educational collaboratives using PowerSchool but does not yet know how many were directly affected.
PowerSchool claimed that while the incident was serious, it was contained, stating, "we have no evidence of malware or continued unauthorized activity in the PowerSchool environment."
Collection
[
|
...
]