1. Website Planet
  2. >
  3. News
  4. >
  5. Millions of Underage Students Exposed in PowerSchool Data Hack
Millions of Underage Students Exposed in PowerSchool Data Hack

Millions of Underage Students Exposed in PowerSchool Data Hack

Andrés Gánem Written by: Andrés Gánem
Sarah Frazier Reviewed by: Sarah Frazier
10 February 2025
A December 2024 breach into the PowerSchool Student Information System (SIS) exposed the personal information of 62.4 million students and 9.5 million teachers worldwide, as claimed by the hacker. A recent internal report suggests the hack might have been facilitated by a lack of basic security features.

PowerSchool originally reported the attack on January 7th of this year, disclosing that a malicious actor used stolen log-in credentials to access its customer support portal. Through access to the portal, the hacker was able to download databases containing the personally identifiable information (PII) of both students and teachers from schools using PowerSchool’s software.

Some of the stolen PII potentially contains names, addresses, and even social security numbers (SSNs) and medical information. According to PowerSchool’s own website, the company provides services for over 18 thousand schools in over 90 countries, for education ranging from kindergarten to 12th grade.

As reported by BleepingComputer, a cybersecurity news portal, the hacker who claimed responsibility for the attack reports they stole the data of over 62.4 million students and 9.5 million teachers. A PowerSchool spokesperson told media sources that the number of students whose SSNs were compromised was below 25%. This would still comprise millions of students, not to mention students for whom other PII was affected. Both claims are still to be confirmed.

On its website, PowerSchool stated that not all of its users were affected by the attack, and offered the affected parties two years of free credit monitoring and identity protection services.

BleepingComputer also reports that the hacker allegedly deleted the leaked information after PowerSchool paid an undisclosed amount of money, which would mean the affected parties were subject to a ransomware attack (a leak where hackers hold the stolen information for a ransom).

The company claims it’s “committed to protecting the security and integrity of our applications and regularly reviews and enhances its security policies and practices.” However, an internal memo showed the PowerSchool SIS lacked basic security features, such as two-factor authentication, as reported by NBC News. This allowed the hacker to access the system using the stolen credentials.

Ransomware attacks are especially effective when levied against vulnerable populations, including minors. In December 2024, another two separate ransomware attacks also targeted a chain of US addiction clinics and state benefit recipients for the state of Rhode Island.

Andrés Gánem
Andrés Gánem
Andrés writes about a variety of topics aimed at helping business owners and merchants grow and manage their ventures. These topics include (but are not limited to) website building, web hosting, project management software, and credit card processing. Andrés has 3+ years of experience as a writer and content creator. He’s also worked as a project manager, website designer, and social media manager for a variety of science communication groups.

Follow our experts on
Rate this Article
4.7 Voted by 3 users
You already voted! Undo
This field is required Maximal length of comment is equal 80000 chars Minimal length of comment is equal 10 chars
Any comments?
Reply
View %s replies
View %s reply
More news
Show more
Reply to
0 out of minimum 50 characters
Complete your reply Complete your comment
The name is too short The name is too long The name contains invalid characters
The email is required The email is incorrect
Thank you, - your comment was submitted successfully!
We check all user comments within 48 hours to make sure they are from real people like you. We're glad you found this article useful - we would appreciate it if you let more people know about it.
Popup final window
Share this blog post with friends and co-workers right now:
1 1 1
Thank you, , your comment was submitted successfully!

We check all comments within 48 hours to make sure they're from real users like you. In the meantime, you can share your comment with others to let more people know what you think.

Thank you for signing up!

Once a month you will receive interesting, insightful tips, tricks, and advice to improve your website performance and reach your digital marketing goals!

1 1 1

So happy you liked it!

Share it with your friends!

1 < 1 1

Or review us on 1

3572924
50
5000
114314157