Welcome to EdTech Today. In December 2024, PowerSchool, which serves 60 million students, was hacked when a single credential was stolen. The company paid an undisclosed ransom to delete the data. Now, Toronto’s district school board “received a communication from a threat actor demanding a ransom using data from the previously reported incident.” Other schools in North Carolina report similar extortion notes. PowerSchool says it “recently became aware that a threat actor has reached out to some PowerSchool SIS customers” but insists these are the same samples from December and that it was “the best option for preventing the data from being made public.” Cybersecurity experts warn ransoms offer no guarantee hackers will delete data and may encourage further attacks. With records dating back to 2009 and potentially millions affected, the fallout continues. Stay tuned as we follow this developing story.
Link to Article