PowerSchool Cybersecurity Incident 24-25

PowerSchool Cyber Security Incident

On December 28, 2024, PowerSchool became aware of a potential cybersecurity incident involving unauthorized access to certain PowerSchool SIS information through one of their community-focused customer portals, PowerSource. PowerSchool is not experiencing, nor does it expect to experience, any operational disruption and continues to provide services as normal to their customers.  They have no evidence that other PowerSchool products were affected as a result of this incident or that there is any malware or continued unauthorized activity in the PowerSchool environment. The bad actor accessed and downloaded the student and teacher tables from a multitude of school districts.

Sweetwater County School District #1 was one of the districts affected by this incident. Sweetwater #1 has utilized PowerSchool since 2000. As previously mentioned, PowerSchool has engaged Experian, a trusted credit reporting agency, to provide complimentary identity protection and credit monitoring services to current and former students and educators that had information exfiltrated from PowerSchool SIS. PowerSchool is doing this regardless of whether an individual’s Social Security Number was exfiltrated. In the coming weeks, Experian (on behalf of PowerSchool) will be distributing direct email notifications to involved individuals (or their parent/guardian, as applicable) for whom PowerSchool has sufficient contact information. If you or someone you know attended school or taught at Sweetwater #1 between 2000 and 2025, you qualify for this service. Please do not wait for communication from Experian as the contact information in PowerSchool may not be up-to-date. Utilize the links below to sign up for credit monitoring.

PowerSchool Notice of Data Breach - Experian Credit Monitoring Signup

PowerSchool Cybersecurity FAQs and Information