A major data breach has sent shockwaves across North America, affecting tens of millions of students and teachers. This massive security incident involves PowerSchool, one of the continent’s largest providers of student information systems. The company revealed on January 7 that a breach had occurred, originally detected in late December 2024.
The individual behind this attack claims to have accessed personal information belonging to 62,488,628 students and 9,506,624 teachers. The majority of those impacted are in the United States and Canada, with significant breaches occurring in large urban school districts such as those in Toronto, Calgary, Dallas, and San Diego. In total, over 6,500 school districts have been compromised.
The breach was executed by obtaining credentials to gain unauthorized access to PowerSchool’s customer support site. This entry point then provided access to various school district databases, where sensitive information is stored.
PowerSchool noted that the extent of the compromised data varies by district because each one may store different information. In light of this breach, PowerSchool is working to mitigate the impact by offering two years of identity monitoring and protection services to those affected.
For those who suspect they are part of the affected population, PowerSchool has provided a dedicated resource for more information. This incident serves as a stark reminder of the importance of cybersecurity measures and the ongoing risks associated with digital data storage systems in educational institutions.
