Dissent Doe :cupofcoffee:<p>Attribution is hard, Thursday edition...</p><p>NEW by me: A guilty plea in the PowerSchool case still leaves unanswered questions</p><p><a href="https://databreaches.net/2025/06/12/a-guilty-plea-in-the-powerschool-case-still-leaves-unanswered-questions/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/06/12/a-</span><span class="invisible">guilty-plea-in-the-powerschool-case-still-leaves-unanswered-questions/</span></a></p><p><a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://infosec.exchange/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hack</span></a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>extortion</span></a> <a href="https://infosec.exchange/tags/attribution" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>attribution</span></a> <a href="https://infosec.exchange/tags/transparency" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>transparency</span></a> <a href="https://infosec.exchange/tags/incidentresponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>incidentresponse</span></a> </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span> <span class="h-card" translate="no"><a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mkeierleber</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>brett</span></a></span></p>
Recent searches
No recent searches
Search options
Only available when logged in.
eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.
Administered by:
Server stats:
212active users
eupolicy.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.8
#powerschool
2 posts · 2 participants · 0 posts today
Dissent Doe :cupofcoffee:<p>Help, please:</p><p>If anyone has a copy of the ransom note sent to PowerSchool in December 2024 or PowerSchool clients in May 2025, please email me a copy or upload it to me on Signal. I want to see not only the body, but the full header and signature. </p><p>PowerSchool has not been transparent about the extortion aspects of the incident and has not responded to inquiries.</p><p>To reach me on Signal, my number is +1 516-776-7756. Email: breaches@databreaches[.]net </p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>extortion</span></a> <a href="https://infosec.exchange/tags/ransom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ransom</span></a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span> <span class="h-card" translate="no"><a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mkeierleber</span></a></span></p>
Hackread.com<p>A 19-year-old college student in the US faces charges after pleading guilty to cyber extortion targeting <a href="https://mstdn.social/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a>, exposing data of 60 million+ students and 10 million teachers.</p><p>Read: <a href="https://hackread.com/19-year-old-admits-powerschool-data-breach-extortion/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/19-year-old-admit</span><span class="invisible">s-powerschool-data-breach-extortion/</span></a></p><p><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mstdn.social/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberCrime</span></a> <a href="https://mstdn.social/tags/Education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Education</span></a> <a href="https://mstdn.social/tags/Extortion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Extortion</span></a></p>
The New Oil<p><a href="https://mastodon.thenewoil.org/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> hacker pleads guilty to student data extortion scheme</p><p><a href="https://www.bleepingcomputer.com/news/security/powerschool-hacker-pleads-guilty-to-student-data-extortion-scheme/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/powerschool-hacker-pleads-guilty-to-student-data-extortion-scheme/</span></a></p><p><a href="https://mastodon.thenewoil.org/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.thenewoil.org/tags/education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>education</span></a> <a href="https://mastodon.thenewoil.org/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DataBreach</span></a> <a href="https://mastodon.thenewoil.org/tags/cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybercrime</span></a></p>
Dissent Doe :cupofcoffee:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@FritzAdalis" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>FritzAdalis</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@scottwilson" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>scottwilson</span></a></span> </p><p>That's not accurate. The Information's wording and organization may have confused people. </p><p>Para 5 in the Information is about Employee 1, a contractor who worked for PowerSchool. The Information does not say Employee 1 was a telco (Victim 1) employee or that their PS credentials were acquired as part of the telco breach. Para 5 is unrelated to Para 4. </p><p>The Employee 1 creds used to access PowerSchool were acquired at a separate time and unrelated to the telco breach. I confirmed that with a source with knowledge of the incident. </p><p>The Information: <a href="https://www.justice.gov/usao-ma/media/1400921/dl" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">justice.gov/usao-ma/media/1400</span><span class="invisible">921/dl</span></a></p><p>Also of note: the Information makes no mention of the second round of extortion attempts, which may mean that DOJ had no evidence connecting Lane to the second set of extortion demands. The second round of extortion demands purported to be from "ShinyHunters," but whether they really were or not has yet to be publicly confirmed or refuted by law enforcement. </p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EduSec</span></a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span> <span class="h-card" translate="no"><a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mkeierleber</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>campuscodi</span></a></span></p>
Dissent Doe :cupofcoffee:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@scottwilson" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>scottwilson</span></a></span> I had the same reaction. I even emailed the Media contact for the Massachusetts USAO to ask why the information included <em>enhanced</em> sentences for use of "special skills" and use of "sophisticated means" under USSG § 3Bl.3 and USSG § 2B 1.1(b )(1 0)(C)), respectively.</p><p>What "special skills?"</p><p>What "sophisticated means?"</p><p>I suspect they won't really answer me, but... I had to ask. </p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EduSec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a></p><p>UPDATING: The USAMA responded:</p><p>"The only information we can provide is that publicly available in the court filings - which are linked in the press release. Apart from that we have no comment. Thank you. "</p><p>Someone find me a good "shocked look" emoji, please.</p>
Dissent Doe :cupofcoffee:<p>Massachusetts hacker to plead guilty to PowerSchool data breach:</p><p><a href="https://www.investing.com/news/stock-market-news/massachusetts-hacker-to-plead-guilty-to-powerschool-data-breach-4055643" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">investing.com/news/stock-marke</span><span class="invisible">t-news/massachusetts-hacker-to-plead-guilty-to-powerschool-data-breach-4055643</span></a></p><p>Related: </p><p>DOJ Press release: <a href="https://www.justice.gov/usao-ma/pr/worcester-college-student-plead-guilty-cyber-extortions" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">justice.gov/usao-ma/pr/worcest</span><span class="invisible">er-college-student-plead-guilty-cyber-extortions</span></a></p><p>USA v. Matthew D. Lane - Information: <a href="https://www.justice.gov/usao-ma/media/1400921/dl" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">justice.gov/usao-ma/media/1400</span><span class="invisible">921/dl</span></a></p><p>USA v. Matthew D. Lane - Plea Agreement: <br><a href="https://www.justice.gov/usao-ma/media/1400926/dl" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">justice.gov/usao-ma/media/1400</span><span class="invisible">926/dl</span></a></p><p><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EduSec</span></a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>brett</span></a></span> <span class="h-card" translate="no"><a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mkeierleber</span></a></span></p>
gtbarry<p>PowerSchool paid a hacker’s ransom, but now schools say they are being extorted</p><p>Months after the hacked education software maker PowerSchool paid a hacker’s ransom to delete the company’s banks of stolen student data, at least one school district says it is now being extorted by someone who said the data was not destroyed. </p><p><a href="https://mastodon.social/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://mastodon.social/tags/ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ransomware</span></a> <a href="https://mastodon.social/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>malware</span></a> <a href="https://mastodon.social/tags/toronoto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>toronoto</span></a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.social/tags/hackers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hackers</span></a> <a href="https://mastodon.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacking</span></a> <a href="https://mastodon.social/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hacked</span></a></p><p><a href="https://techcrunch.com/2025/05/08/powerschool-paid-a-hackers-ransom-but-now-schools-say-they-are-being-extorted/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">techcrunch.com/2025/05/08/powe</span><span class="invisible">rschool-paid-a-hackers-ransom-but-now-schools-say-they-are-being-extorted/</span></a></p>
Hackread.com<p>🫰 <a href="https://mstdn.social/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> paid ransom after major data breach; now hackers are directly targeting teachers and schools with direct extortion threats for more payment.</p><p>Read: <a href="https://hackread.com/powerschool-paid-ransom-now-hackers-target-teachers/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">hackread.com/powerschool-paid-</span><span class="invisible">ransom-now-hackers-target-teachers/</span></a></p><p><a href="https://mstdn.social/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a> <a href="https://mstdn.social/tags/CyberAttack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberAttack</span></a> <a href="https://mstdn.social/tags/CyberCrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberCrime</span></a> <a href="https://mstdn.social/tags/Ransom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ransom</span></a></p>
The New Oil<p><a href="https://mastodon.thenewoil.org/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> hacker now extorting individual school districts</p><p><a href="https://www.bleepingcomputer.com/news/security/powerschool-hacker-now-extorting-individual-school-districts/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/powerschool-hacker-now-extorting-individual-school-districts/</span></a></p><p><a href="https://mastodon.thenewoil.org/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.thenewoil.org/tags/education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>education</span></a></p>
deltatux :donor:<p><span>PowerSchool, the cloud platform provider providing services to school boards across Canada & the US has confirmed that even though a ransom has been paid to the cybercriminals holding the data ransom & received assurances that the data was destroyed, the criminals have returned demanding for more money as they have not actually destroyed the data.<br><br>This unfortunately highlights the biggest risk when it comes to paying ransom for data destruction, threat actors can always come back demanding for more once they realize exactly how valuable the data is.<br><br></span><a href="https://www.thestar.com/news/gta/student-data-obtained-in-a-cyberattack-on-gta-school-boards-was-supposed-to-be-destroyed/article_cf2901bb-3fcc-4f84-ad7b-32399076b7e5.html" rel="nofollow noopener noreferrer" target="_blank">www.thestar.com/news/gta/student-data-obtained-in-a-cyberattack-on-gta-school-boards-was-supposed-to-be-destroyed/article_cf2901bb-3fcc-4f84-ad7b-32399076b7e5.html</a><span><br><br></span><a href="https://infosec.town/tags/infosec" rel="nofollow noopener noreferrer" target="_blank">#infosec</a><span> </span><a href="https://infosec.town/tags/PowerSchool" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a><span> </span><a href="https://infosec.town/tags/PowerSchoolHack" rel="nofollow noopener noreferrer" target="_blank">#PowerSchoolHack</a><span> </span><a href="https://infosec.town/tags/ransom" rel="nofollow noopener noreferrer" target="_blank">#ransom</a><span> </span><a href="https://infosec.town/tags/TDSB" rel="nofollow noopener noreferrer" target="_blank">#TDSB</a><span> </span><a href="https://infosec.town/tags/YRDSB" rel="nofollow noopener noreferrer" target="_blank">#YRDSB</a><span> </span><a href="https://infosec.town/tags/PDSB" rel="nofollow noopener noreferrer" target="_blank">#PDSB</a><span> </span><a href="https://infosec.town/tags/Toronto" rel="nofollow noopener noreferrer" target="_blank">#Toronto</a><span> </span><a href="https://infosec.town/tags/YorkRegion" rel="nofollow noopener noreferrer" target="_blank">#YorkRegion</a><span> </span><a href="https://infosec.town/tags/PeelRegion" rel="nofollow noopener noreferrer" target="_blank">#PeelRegion</a><span> </span><a href="https://infosec.town/tags/Ontario" rel="nofollow noopener noreferrer" target="_blank">#Ontario</a><span> </span><a href="https://infosec.town/tags/Canada" rel="nofollow noopener noreferrer" target="_blank">#Canada</a></p>
Dissent Doe :cupofcoffee:<p>Today's reminder why NOT to pay criminals' extortion demands to delete data:</p><p>PowerSchool paid a hacker’s extortion demand, but now school district clients are being extorted anyway</p><p><a href="https://databreaches.net/2025/05/07/powerschool-paid-a-hackers-extortion-demand-but-now-school-district-clients-are-being-extorted-anyway/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">databreaches.net/2025/05/07/po</span><span class="invisible">werschool-paid-a-hackers-extortion-demand-but-now-school-district-clients-are-being-extorted-anyway/</span></a></p><p>NOTE: I subsequently edited my post to clarify that the ransom demand to the state (North Carolina) claimed to be from ShinyHunters. I haven't yet seen any ransom notes to individual districts and I do not know how those were signed or claimed. Stay tuned, I guess....</p><p><a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://infosec.exchange/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>hack</span></a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EduSec</span></a> <a href="https://infosec.exchange/tags/EdTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EdTech</span></a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>extortion</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span> <span class="h-card" translate="no"><a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>mkeierleber</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>brett</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@euroinfosec" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>euroinfosec</span></a></span> <span class="h-card" translate="no"><a href="https://ioc.exchange/@jgreig" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>jgreig</span></a></span></p>
Edwin G. :mapleleafroundel:<p>PowerSchool is under investigation by the Privacy Commisionner after breach affecting student information. </p><p><a href="https://www.cbc.ca/news/canada/privacy-commissioner-powerschool-investigation-1.7457446" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">cbc.ca/news/canada/privacy-com</span><span class="invisible">missioner-powerschool-investigation-1.7457446</span></a><br>- - -<br>PowerSchool est sous enquête par le Commissaire à la vie privée après une brèche touchant les données d’élèves. </p><p>// Article en anglais //</p><p><a href="https://mstdn.moimeme.ca/tags/Canada" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Canada</span></a> <a href="https://mstdn.moimeme.ca/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://mstdn.moimeme.ca/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a> <a href="https://mstdn.moimeme.ca/tags/ViePriv%C3%A9e" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ViePrivée</span></a> <a href="https://mstdn.moimeme.ca/tags/PIPEDA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PIPEDA</span></a> <a href="https://mstdn.moimeme.ca/tags/LPRPD%C3%89" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LPRPDÉ</span></a></p>
whoosh<p><span class="h-card" translate="no"><a href="https://mastodon.social/@zackwhittaker" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>zackwhittaker</span></a></span> </p><p>Thanks to TechCrunch for this fine synopsis, and for keeping this issue in the light.</p><p><a href="https://social.sdf.org/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a></p>
Europe Says<p><a href="https://www.europesays.com/1809932/" rel="nofollow noopener noreferrer" target="_blank"><span class="invisible">https://www.</span><span class="">europesays.com/1809932/</span><span class="invisible"></span></a> Rochester schools’ data breach exposes over 130,000 student records <a href="https://pubeurope.com/tags/cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cyberattack</span></a> <a href="https://pubeurope.com/tags/Data" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Data</span></a> <a href="https://pubeurope.com/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DataBreach</span></a> <a href="https://pubeurope.com/tags/Dr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Dr</span></a>.DemarioStrickland <a href="https://pubeurope.com/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityTheft</span></a> <a href="https://pubeurope.com/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://pubeurope.com/tags/rochester" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rochester</span></a> <a href="https://pubeurope.com/tags/SchoolDistrict" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SchoolDistrict</span></a> <a href="https://pubeurope.com/tags/StudentRecords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>StudentRecords</span></a></p>
rssbot<p>PowerSchool data breach has hit at least 80 Canadian school boards <a href="https://mastodon.baie.me/tags/Canada" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Canada</span></a> <a href="https://mastodon.baie.me/tags/Consumer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Consumer</span></a> <a href="https://mastodon.baie.me/tags/Tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tech</span></a> <a href="https://mastodon.baie.me/tags/US" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>US</span></a> News <a href="https://mastodon.baie.me/tags/Powerschool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Powerschool</span></a> <a href="https://mastodon.baie.me/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> Data Breach</p><p><a href="https://globalnews.ca/news/10981247/powerschool-how-many-school-boards-impacted//612" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">globalnews.ca/news/10981247/po</span><span class="invisible">werschool-how-many-school-boards-impacted//612</span></a></p>
Dissent Doe :cupofcoffee:<p>Rochester NY had 134,000 students and an unspecified number of staff members affected by the <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a>. Here's their breach page: </p><p><a href="https://www.rcsdk12.org/databreach" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">rcsdk12.org/databreach</span><span class="invisible"></span></a></p><p>I'm not sure if this is the first that they are posting anything or alerting anyone. </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span></p>
PrivacyDigest<p>Data <a href="https://mas.to/tags/breach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>breach</span></a> hitting <a href="https://mas.to/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> looks very, very bad <br><a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>privacy</span></a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a></p><p><a href="https://arstechnica.com/security/2025/01/students-parents-and-teachers-still-smarting-from-breach-exposing-their-info/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">arstechnica.com/security/2025/</span><span class="invisible">01/students-parents-and-teachers-still-smarting-from-breach-exposing-their-info/</span></a></p>
Dissent Doe :cupofcoffee:<p>Here's another Canadian school that had decades of student data caught up in the PowerSchool breach:</p><p>Wellington Catholic District School Board:<br><a href="https://www.wellingtonadvertiser.com/cybersecurity-breach-involves-29-years-of-catholic-school-board-data/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">wellingtonadvertiser.com/cyber</span><span class="invisible">security-breach-involves-29-years-of-catholic-school-board-data/</span></a></p><p><a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>databreach</span></a> <a href="https://infosec.exchange/tags/legacydata" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>legacydata</span></a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EduSec</span></a> </p><p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>brett</span></a></span></p>
Dissent Doe :cupofcoffee:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>douglevin</span></a></span> <span class="h-card" translate="no"><a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>funnymonkey</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>brett</span></a></span> </p><p>American School of Dubai mentioned as having been affected: <a href="https://www.dmnews.com/school-districts-worldwide-impacted-by-powerschool-breach/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">dmnews.com/school-districts-wo</span><span class="invisible">rldwide-impacted-by-powerschool-breach/</span></a></p><p><a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EduSec</span></a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PowerSchool</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload