Bleeping Computer: “The hacker who breached education tech giant PowerSchool claimed in an extortion demand that they stole the personal data of 62.4 million students and 9.5 million teachers. PowerSchool is a cloud-based software solutions provider for K-12 schools and districts that provides tools for enrollment, communication, attendance, staff management, learning systems, analytics, and finance. On January 7th, PowerSchool disclosed that it suffered a cyberattack after a threat actor used stolen credentials to access the company’s PowerSource customer support portal. Using this access, the threat actor utilized a customer support maintenance access tool to download student and teacher data from districts’ PowerSIS databases. As first reported and seen by BleepingComputer, an FAQ stated that sensitive information, such as Social Security Numbers, medical information, and grades, was stolen for a subset of students impacted by the breach. This FAQ also stated that PowerSchool paid a ransom to prevent the stolen data from being leaked privately, seeing a video of the threat actor claiming to delete the data. While the company showed more transparency in the private customer FAQ than other security disclosures, they still have not provided specific numbers as to how many students and teachers were impacted by the breach, frustrating parents, teachers, and school administrators who have spoken to BleepingComputer. However, BleepingComputer has received information that sheds more light on the impact of this breach…”