school districts hit with extortion attempts months after education tech data breach

Thursday, July 31, 2025

Tech

School districts hit with extortion attempts months after education tech data breach

08 May 2025

One of the largest providers of education tech paid off hackers so that they wouldn’t publish tens of millions of children’s personal information. But school districts are facing extortion attempts anyway.

The company, PowerSchool, missed a basic cybersecurity step, according to a cybersecurity audit obtained by NBC News, and was hacked last year, leading to one of the largest breaches to date of American children’s personal data. PowerSchool reportedly paid an undisclosed sum to the hackers in exchange for a video of them purporting to delete the files they had stolen, which included some students’ Social Security numbers and other information, like health and disciplinary records.

But "a threat actor" is using that stolen data to try to extort schools and school districts in both the U.S. and Canada, according to statements from PowerSchool and various school districts issued Wednesday.

"PowerSchool is aware that a threat actor has reached out to multiple school district customers in an attempt to extort them using data from the previously reported December 2024 incident," PowerSchool wrote in a statement Wednesday. "We do not believe this is a new incident, as samples of data match the data previously stolen in December."

Public schools across North Carolina received extortion emails Wednesday morning, North Carolina Department of Public Instruction Superintendent Mo Green said in a public bulletin. The threat actor appears to have students' and staffers’ names, contact information, birthdays, medical information, parental information, and in some cases Social Security numbers, he said.

Several Canadian school authorities have announced they are also among the victims, including the Peel District School Board in Ontario and the Toronto District School Board. The Calgary Board of Education also issued a warning to parents this week based on communication it had received from PowerSchool.

It was not immediately clear who was behind the current extortion attempt. PowerSchool said it believes that the threat actor is using data stolen from the original incident last year, indicating that the original hackers either are behind the current attempts or kept the data and made it accessible to other people.

SECTIONS

SECTIONS

SECTIONS

SECTIONS

School districts hit with extortion attempts months after education tech data breach

Latest News

Trump says US will impose additional 10% tariff on China

Most Americans hit the snooze button every morning — here’s why it could be bad for your health

4 biggest handwashing mistakes that could increase germs and viruses

The optimal time to drink coffee isn't when you normally have it

The Pandemic Agreement is a Landmark for Public Health

Foreign diplomats come under Israeli fire on official West Bank visit, drawing swift international condemnation

Britain’s plan to transfer Chagos Islands blocked by last-minute legal injunction

Kneecap rapper charged with terrorism offense over alleged Hezbollah flag

The Pandemic Agreement is a Landmark for Public Health

Investors dump bonds globally as U.S. credit downgrade, Trump’s tax bill ignite fiscal worries

Stock futures inch higher after a big sell-off on deficit concerns: Live updates

Nvidia’s Jensen Huang thinks U.S. chip curbs failed — and he’s not alone

Two Israeli Embassy staffers shot dead outside D.C.’s Capital Jewish Museum

Asia-Pacific markets fall after Wall Street declines as U.S. stares at ballooning debt

Dow slides more than 800 points as spiking Treasury yields and deficit fears spur a sell-off: Live updates