US Edtech giant Powerschool has confirmed that 16,000 UK students have personal and sensitive data stolen in the December 2024 data breach.
This week, Powerschool began notifying individuals outside the US and Canada who have been affected by the violation. The incident was first confirmed by PowerSchool in January, and after hackers used compromised credentials to breach the company’s customer support portal, it accessed personal data from millions of students and teachers.
PowerSchool has not confirmed how many international students were affected. However, Powerschool spokesman Beth Keebler said in an email statement to TechCrunch that four UK schools have been affected, with hackers accessing data from “approximately 16,000 students.” I’ve confirmed that it’s there.
In a letter seen by TechCrunch, sent to affected individuals outside the US and Canada, the data accessed includes student contact information, date of birth, limited medical data and “other” It stated that it contains related information.
Keebler told TechCrunch that “information that excludes various individual information across the customer base.” Powerschool rejected the names of the British schools affected by the incident.
On the company’s incident page, which was offline at the time of publication, PowerSchool noted that it would not provide credit surveillance services to data breach victims outside the US and Canada.
Lucy Milburn, a spokesman for the UK Intelligence Commission (ICO), told TechCrunch he had not received data breach reports from Powerschool.
Keeber has issued a data breach report to ICO, claiming that PowerSchool “does not function as a data controller” (the organization that determines the purpose and means of processing personal data,” under the UK data protection law. I’ve confirmed that I haven’t submitted it.
TechCrunch reached out to the ICO with further questions about PowerSchool’s claims.
PowerSchool has yet to confirm the total number of individuals affected by the December breach, despite telling TechCrunch that it has “identified the schools and districts in which the data is involved in the incident.”
The violations reportedly affected personal and sensitive data from over 62 million students and 9.5 million teachers. Powerschool has repeatedly refused to check if the number is accurate, but on its website the company says the technology is being used by more than 60 million students.
Is there any more information about PowerSchool data breach? We look forward to hearing from you. From non-work devices, you can safely contact the Carly page at a signal of +44 1536 853968 or email it at carly.page@techcrunch.com.
Source link
