PowerSchool Data Breach Exposes 70 Million Records in 2024, Highlighting Growing Cybersecurity Threats
In 2024, a massive data breach at PowerSchool, a leading provider of cloud-based education software, compromised the personal information of 60 million children and 10 million teachers across the U.S. The breach, carried out by 19-year-old college student Matthew Lane, exposed sensitive data, including grades, discipline records, and personally identifiable information (PII).
Lane gained unauthorized access to PowerSchool’s systems using stolen credentials from a contractor associated with the company. After exfiltrating the data, he demanded a $3 million ransom to delete the stolen records a demand PowerSchool reportedly paid to prevent further exposure. Authorities apprehended Lane months later, though the long-term impact of the breach remains a concern for affected students, educators, and institutions.
The incident underscores the escalating threat of cyberattacks, particularly those targeting third-party vendors and contractors. With 3,322 data breaches reported in 2025 a record high affecting over 278 million individuals, the PowerSchool breach serves as a stark reminder of the vulnerabilities in critical infrastructure, even in sectors like education. The case also raises questions about ransom payments and their role in fueling future cybercrime.
Source: https://www.slashgear.com/2150900/fbi-powerschool-hacker-arrest-matthew-lane/
PowerSchool cybersecurity rating report: https://www.rankiteo.com/company/powerschool-group-llc
"id": "POW1776522300",
"linkid": "powerschool-group-llc",
"type": "Breach",
"date": "1/2024",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '60 million children and 10 '
'million teachers',
'industry': 'Education Technology',
'location': 'U.S.',
'name': 'PowerSchool',
'type': 'Company'}],
'attack_vector': 'Stolen credentials from a contractor',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '70 million',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Grades',
'Discipline records',
'Personally identifiable '
'information (PII)']},
'date_publicly_disclosed': '2024',
'description': 'In 2024, a massive data breach at PowerSchool, a leading '
'provider of cloud-based education software, compromised the '
'personal information of 60 million children and 10 million '
'teachers across the U.S. The breach exposed sensitive data, '
'including grades, discipline records, and personally '
'identifiable information (PII). The attacker demanded a $3 '
'million ransom, which PowerSchool reportedly paid to prevent '
'further exposure.',
'impact': {'brand_reputation_impact': 'High',
'data_compromised': 'Grades, discipline records, personally '
'identifiable information (PII)',
'financial_loss': '$3 million (ransom paid)',
'identity_theft_risk': 'High'},
'initial_access_broker': {'entry_point': 'Stolen credentials from a '
'contractor'},
'investigation_status': 'Completed (attacker apprehended)',
'lessons_learned': 'The incident underscores the escalating threat of '
'cyberattacks, particularly those targeting third-party '
'vendors and contractors. It highlights vulnerabilities in '
'critical infrastructure, even in sectors like education, '
'and raises questions about ransom payments and their role '
'in fueling future cybercrime.',
'motivation': 'Financial gain (ransom)',
'post_incident_analysis': {'root_causes': 'Stolen credentials from a '
'third-party contractor'},
'ransomware': {'data_exfiltration': 'Yes',
'ransom_demanded': '$3 million',
'ransom_paid': 'Yes'},
'references': [{'source': 'Cyber Incident Description'}],
'response': {'law_enforcement_notified': 'Yes (authorities apprehended the '
'attacker)'},
'threat_actor': 'Matthew Lane (19-year-old college student)',
'title': 'PowerSchool Data Breach Exposes 70 Million Records in 2024',
'type': 'Data Breach'}