(603) 926-8992

2 Alumni Drive, Hampton, NH 03842

Translate

Resources

PowerSchool Data Breach

Please check back here for important updates regarding the PowerSchool data breach. Below you will find all the updates and current information that we know along with an FAQ. This page will be updated as we learn more details about the breach.

FAQ

How did this data breach happen?

PowerSchool has reported that in late December, a login account was compromised, allowing an unauthorized user to gain access to many of their clients’ data systems. It is believed that the information was accessed by a hacker in Ukraine.

Who was affected?

This breach has affected many, but not all, of PowerSchool’s 13,000 school district clients worldwide. This was a global attack and not targeted directly at our district.

When did PowerSchool first learn about the data breach?

The company reports that it was first made aware of the breach on December 28.

When did PowerSchool notify the District?

We were notified on January 7.

What types of information may have been accessed?

PowerSchool has confirmed that the stolen data primarily contains contact details such as names and addresses. Accessed data could also include Social Security numbers (SSNs), personally identifiable information (PII), medical information, and grades. Our school districts did not store Social Security numbers on PowerSchool.

Was District information accessed?

Student data, including archived data that was accessed: address, grade level, home phone, ethnicity, student alerts, doctor's name and phone number, cumulative grade-point average, gender, state student ID number, date of birth, guardian's address, email and phone, emergency contact, homeroom, lunch status, and student's schedule.

Teacher data, including archived data that was accessed: address, phone, personal email, ethnicity, gender, and teacher schedule.

PowerSchool has other school products? Were they affected?

PowerSchool’s parent company also has other products including Records, TalentEd, and SchoolSpring. PowerSchool has stated that only PowerSchool SIS (Student Information System) was breached.

Is PowerSchool safe to use?

PowerSchool has taken a number of measures to increase security, including mandating new passwords and instituting tighter password policies.

The company has assured us there is no evidence of malware or continued unauthorized activity on the PowerSchool SIS platform.

Was this a ransom attack?

The company states that they received no demand for payment. However, the company hired CyberSteward to negotiate a payment to prevent public release of personal information. Further, CyberSteward is monitoring the dark web to ensure information is not released.

What can I do if my information, or that of my child, has been released?

PowerSchool will provide credit monitoring to affected adults and identity protection services to affected minors as required contractually and by law. The information compromised will vary by affected customer.

What steps are the District taking to protect the safety and privacy of student and staff data?

The district has taken extra precautions by removing unnecessary data in PowerSchool as well as resetting all student passwords. The district is also on alert for any potential malicious attacks due to the breach.

Will the District continue to use PowerSchool?

The company has promised to share its third-party investigative review no later than January 17. The facts and findings in that report will become part of our internal discussions, and help inform our next steps to fully protect personal information in our care.

PowerSchool Resources

SAU21 utilizes PowerSchool for our Student Information System (SIS). Please use the links below to access your portal. Below that you can find various PowerSchool guides and resources for guardians, teachers, and administrators. 

2024-25 New Student Registration

This site provides information using PDF, visit this link to download the Adobe Acrobat Reader DC software.