Mastouille

Dissent Doe :cupofcoffee:Breaches have consequences (sometimes):"On Monday, the North Carolina State Board of Education approved a six-month, roughly $270,000 contract with PowerSchool for professional evaluations and onboarding services. The contract, NCDPI noted, isn’t related to the student information system, which was hacked in December. That system’s contract will expire at the end of June and won’t be renewed."<a href="https://www.wect.com/2025/06/25/ncdpi-renews-contract-with-powerschool-after-massive-data-breach/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.wect.com/2025/06/25/ncdpi-renews-contract-with-powerschool-after-massive-data-breach/</a><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkeierleber</a> <a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@brett</a>

Dissent Doe :cupofcoffee:Attribution is hard, Thursday edition...NEW by me: A guilty plea in the PowerSchool case still leaves unanswered questions<a href="https://databreaches.net/2025/06/12/a-guilty-plea-in-the-powerschool-case-still-leaves-unanswered-questions/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://databreaches.net/2025/06/12/a-guilty-plea-in-the-powerschool-case-still-leaves-unanswered-questions/</a><a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hack</a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#extortion</a> <a href="https://infosec.exchange/tags/attribution" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#attribution</a> <a href="https://infosec.exchange/tags/transparency" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#transparency</a> <a href="https://infosec.exchange/tags/incidentresponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#incidentresponse</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkeierleber</a> <a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@brett</a>

Dissent Doe :cupofcoffee:Help, please:If anyone has a copy of the ransom note sent to PowerSchool in December 2024 or PowerSchool clients in May 2025, please email me a copy or upload it to me on Signal. I want to see not only the body, but the full header and signature. PowerSchool has not been transparent about the extortion aspects of the incident and has not responded to inquiries.To reach me on Signal, my number is +1 516-776-7756. Email: breaches@databreaches[.]net <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#extortion</a> <a href="https://infosec.exchange/tags/ransom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ransom</a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkeierleber</a>

The New Oil<a href="https://mastodon.thenewoil.org/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> hacker pleads guilty to student data extortion scheme<a href="https://www.bleepingcomputer.com/news/security/powerschool-hacker-pleads-guilty-to-student-data-extortion-scheme/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/powerschool-hacker-pleads-guilty-to-student-data-extortion-scheme/</a><a href="https://mastodon.thenewoil.org/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.thenewoil.org/tags/education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#education</a> <a href="https://mastodon.thenewoil.org/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://mastodon.thenewoil.org/tags/cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybercrime</a>

Dissent Doe :cupofcoffee:<a href="https://infosec.exchange/@FritzAdalis" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@FritzAdalis</a> <a href="https://infosec.exchange/@scottwilson" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@scottwilson</a> That's not accurate. The Information's wording and organization may have confused people. Para 5 in the Information is about Employee 1, a contractor who worked for PowerSchool. The Information does not say Employee 1 was a telco (Victim 1) employee or that their PS credentials were acquired as part of the telco breach. Para 5 is unrelated to Para 4. The Employee 1 creds used to access PowerSchool were acquired at a separate time and unrelated to the telco breach. I confirmed that with a source with knowledge of the incident. The Information: <a href="https://www.justice.gov/usao-ma/media/1400921/dl" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.justice.gov/usao-ma/media/1400921/dl</a>Also of note: the Information makes no mention of the second round of extortion attempts, which may mean that DOJ had no evidence connecting Lane to the second set of extortion demands. The second round of extortion demands purported to be from "ShinyHunters," but whether they really were or not has yet to be publicly confirmed or refuted by law enforcement. <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkeierleber</a> <a href="https://mastodon.social/@campuscodi" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@campuscodi</a>

Dissent Doe :cupofcoffee:<a href="https://infosec.exchange/@scottwilson" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@scottwilson</a> I had the same reaction. I even emailed the Media contact for the Massachusetts USAO to ask why the information included enhanced sentences for use of "special skills" and use of "sophisticated means" under USSG § 3Bl.3 and USSG § 2B 1.1(b )(1 0)(C)), respectively.What "special skills?"What "sophisticated means?"I suspect they won't really answer me, but... I had to ask. <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>UPDATING: The USAMA responded:"The only information we can provide is that publicly available in the court filings - which are linked in the press release. Apart from that we have no comment. Thank you. "Someone find me a good "shocked look" emoji, please.

Dissent Doe :cupofcoffee:Massachusetts hacker to plead guilty to PowerSchool data breach:<a href="https://www.investing.com/news/stock-market-news/massachusetts-hacker-to-plead-guilty-to-powerschool-data-breach-4055643" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.investing.com/news/stock-market-news/massachusetts-hacker-to-plead-guilty-to-powerschool-data-breach-4055643</a>Related: DOJ Press release: <a href="https://www.justice.gov/usao-ma/pr/worcester-college-student-plead-guilty-cyber-extortions" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.justice.gov/usao-ma/pr/worcester-college-student-plead-guilty-cyber-extortions</a>USA v. Matthew D. Lane - Information: <a href="https://www.justice.gov/usao-ma/media/1400921/dl" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.justice.gov/usao-ma/media/1400921/dl</a>USA v. Matthew D. Lane - Plea Agreement: <a href="https://www.justice.gov/usao-ma/media/1400926/dl" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.justice.gov/usao-ma/media/1400926/dl</a><a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@brett</a> <a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkeierleber</a>

Doug LevinSome useful advice here: PowerSchool Data Breach Developments <a href="https://www.edtechirl.com/p/powerschool-data-breach-developments" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.edtechirl.com/p/powerschool-data-breach-developments</a> <a href="https://infosec.exchange/tags/edtech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#edtech</a> <a href="https://infosec.exchange/tags/edusec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#edusec</a> <a href="https://infosec.exchange/tags/powerschool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#powerschool</a> <a href="https://infosec.exchange/@PogoWasRight" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@PogoWasRight</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@brett</a>

The New Oil<a href="https://mastodon.thenewoil.org/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> hacker now extorting individual school districts<a href="https://www.bleepingcomputer.com/news/security/powerschool-hacker-now-extorting-individual-school-districts/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/powerschool-hacker-now-extorting-individual-school-districts/</a><a href="https://mastodon.thenewoil.org/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://mastodon.thenewoil.org/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.thenewoil.org/tags/education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#education</a>

deltatux :donor:PowerSchool, the cloud platform provider providing services to school boards across Canada & the US has confirmed that even though a ransom has been paid to the cybercriminals holding the data ransom & received assurances that the data was destroyed, the criminals have returned demanding for more money as they have not actually destroyed the data. This unfortunately highlights the biggest risk when it comes to paying ransom for data destruction, threat actors can always come back demanding for more once they realize exactly how valuable the data is. <a href="https://www.thestar.com/news/gta/student-data-obtained-in-a-cyberattack-on-gta-school-boards-was-supposed-to-be-destroyed/article_cf2901bb-3fcc-4f84-ad7b-32399076b7e5.html" rel="nofollow noopener noreferrer" target="_blank">www.thestar.com/news/gta/student-data-obtained-in-a-cyberattack-on-gta-school-boards-was-supposed-to-be-destroyed/article_cf2901bb-3fcc-4f84-ad7b-32399076b7e5.html</a> <a href="https://infosec.town/tags/infosec" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.town/tags/PowerSchool" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.town/tags/PowerSchoolHack" rel="nofollow noopener noreferrer" target="_blank">#PowerSchoolHack</a> <a href="https://infosec.town/tags/ransom" rel="nofollow noopener noreferrer" target="_blank">#ransom</a> <a href="https://infosec.town/tags/TDSB" rel="nofollow noopener noreferrer" target="_blank">#TDSB</a> <a href="https://infosec.town/tags/YRDSB" rel="nofollow noopener noreferrer" target="_blank">#YRDSB</a> <a href="https://infosec.town/tags/PDSB" rel="nofollow noopener noreferrer" target="_blank">#PDSB</a> <a href="https://infosec.town/tags/Toronto" rel="nofollow noopener noreferrer" target="_blank">#Toronto</a> <a href="https://infosec.town/tags/YorkRegion" rel="nofollow noopener noreferrer" target="_blank">#YorkRegion</a> <a href="https://infosec.town/tags/PeelRegion" rel="nofollow noopener noreferrer" target="_blank">#PeelRegion</a> <a href="https://infosec.town/tags/Ontario" rel="nofollow noopener noreferrer" target="_blank">#Ontario</a> <a href="https://infosec.town/tags/Canada" rel="nofollow noopener noreferrer" target="_blank">#Canada</a>

Dissent Doe :cupofcoffee:Today's reminder why NOT to pay criminals' extortion demands to delete data:PowerSchool paid a hacker’s extortion demand, but now school district clients are being extorted anyway<a href="https://databreaches.net/2025/05/07/powerschool-paid-a-hackers-extortion-demand-but-now-school-district-clients-are-being-extorted-anyway/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://databreaches.net/2025/05/07/powerschool-paid-a-hackers-extortion-demand-but-now-school-district-clients-are-being-extorted-anyway/</a>NOTE: I subsequently edited my post to clarify that the ransom demand to the state (North Carolina) claimed to be from ShinyHunters. I haven't yet seen any ransom notes to individual districts and I do not know how those were signed or claimed. Stay tuned, I guess....<a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hack</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/EdTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EdTech</a> <a href="https://infosec.exchange/tags/extortion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#extortion</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkeierleber</a> <a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@brett</a> <a href="https://infosec.exchange/@euroinfosec" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@euroinfosec</a> <a href="https://ioc.exchange/@jgreig" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@jgreig</a>

whoosh<a href="https://mastodon.social/@zackwhittaker" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@zackwhittaker</a> Thanks to TechCrunch for this fine synopsis, and for keeping this issue in the light.<a href="https://social.sdf.org/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a>

Europe Says<a href="https://www.europesays.com/1809932/" rel="nofollow noopener noreferrer" target="_blank">https://www.europesays.com/1809932/</a> Rochester schools’ data breach exposes over 130,000 student records <a href="https://pubeurope.com/tags/cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyberattack</a> <a href="https://pubeurope.com/tags/Data" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Data</a> <a href="https://pubeurope.com/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://pubeurope.com/tags/Dr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Dr</a>.DemarioStrickland <a href="https://pubeurope.com/tags/IdentityTheft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IdentityTheft</a> <a href="https://pubeurope.com/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://pubeurope.com/tags/rochester" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rochester</a> <a href="https://pubeurope.com/tags/SchoolDistrict" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SchoolDistrict</a> <a href="https://pubeurope.com/tags/StudentRecords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#StudentRecords</a>

Anonymous 🐈️🐾☕🍵🏴🇵🇸 :af:Education software giant <a href="https://kolektiva.social/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> has started notifying individuals in the U.S. and Canada whose personal data was exposed in a late December 2024 cyberattack. <a href="https://kolektiva.social/tags/CyberAlerts" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberAlerts</a> <a href="https://kolektiva.social/tags/CyberAttacks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberAttacks</a> <a href="https://kolektiva.social/tags/DataBreaches" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreaches</a> <a href="https://www.bleepingcomputer.com/news/security/powerschool-starts-notifying-victims-of-massive-data-breach/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/powerschool-starts-notifying-victims-of-massive-data-breach/</a>

Dissent Doe :cupofcoffee:Rochester NY had 134,000 students and an unspecified number of staff members affected by the <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a>. Here's their breach page: <a href="https://www.rcsdk12.org/databreach" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.rcsdk12.org/databreach</a>I'm not sure if this is the first that they are posting anything or alerting anyone. <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a>

gtbarryPowerSchool hacker claims they stole data of 62 million studentsThe hacker who breached education tech giant PowerSchool claimed in an extortion demand that they stole the personal data of 62.4 million students and 9.5 million teachers.<a href="https://mastodon.social/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://mastodon.social/tags/education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#education</a> <a href="https://mastodon.social/tags/edtech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#edtech</a> <a href="https://mastodon.social/tags/cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyberattack</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://mastodon.social/tags/hackers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hackers</a> <a href="https://mastodon.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://mastodon.social/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a><a href="https://www.bleepingcomputer.com/news/security/powerschool-hacker-claims-they-stole-data-of-62-million-students/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/powerschool-hacker-claims-they-stole-data-of-62-million-students/</a>

Dissent Doe :cupofcoffee:Here's another Canadian school that had decades of student data caught up in the PowerSchool breach:Wellington Catholic District School Board: <a href="https://www.wellingtonadvertiser.com/cybersecurity-breach-involves-29-years-of-catholic-school-board-data/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.wellingtonadvertiser.com/cybersecurity-breach-involves-29-years-of-catholic-school-board-data/</a><a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/tags/legacydata" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#legacydata</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@brett</a>

Dissent Doe :cupofcoffee:<a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://infosec.exchange/@brett" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@brett</a> American School of Dubai mentioned as having been affected: <a href="https://www.dmnews.com/school-districts-worldwide-impacted-by-powerschool-breach/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.dmnews.com/school-districts-worldwide-impacted-by-powerschool-breach/</a><a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a>

Dissent Doe :cupofcoffee:I must have missed something. I thought PowrerSchool hit US and Canada. It also hit some Bermuda schools? <a href="https://www.royalgazette.com/education/news/article/20250119/details-given-on-school-security-breach/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.royalgazette.com/education/news/article/20250119/details-given-on-school-security-breach/</a>"Ms Richards said the company confirmed the breach included “data from some Bermuda public schools families and teachers”."<a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a> <a href="https://infosec.exchange/tags/Powerschool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Powerschool</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Dissent Doe :cupofcoffee:<a href="https://infosec.exchange/@douglevin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@douglevin</a> <a href="https://freeradical.zone/@funnymonkey" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@funnymonkey</a> <a href="https://journa.host/@mkeierleber" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkeierleber</a> So I could be wrong, but I think the only way they may be able do that for minor kids who don't have a credit report already is to have Experian create a credit report for the minor which they then monitor. So now your kid has a credit report, which they never should have had as a minor, and what happens after two years when Experian stops monitoring it? Has anyone asked them about that? <a href="https://infosec.exchange/tags/PowerSchool" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PowerSchool</a> <a href="https://infosec.exchange/tags/EduSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#EduSec</a> <a href="https://infosec.exchange/tags/IncidentResponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IncidentResponse</a> <a href="https://infosec.exchange/tags/databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#databreach</a>

Recherches récentes

Options de recherche

Administré par :

Statistiques du serveur :

#powerschool