# PowerSchool Hackers Return, Extorting Schools with Stolen Data
The cyberattack on PowerSchool in December 2024 has left a trail of worry for educators and students alike. The attackers, who made off with the personal data of 62 million students and 9 million teachers, have now turned their sights on individual schools, extorting them for ransom while threatening to release previously stolen information.
## A Pattern of Extortion
According to PowerSchool, a threat actor has reached out to multiple school district customers, attempting to extort them using the data from the previous incident. The company confirmed that this is not an isolated case, but rather part of a larger pattern of extortion against schools who have been affected by the breach.
"We are aware that a threat actor has reached out to multiple school district customers in an attempt to extort them using data from the previously reported December 2024 incident," PowerSchool said. "PowerSchool is committed to supporting our customers and ensuring their safety and security."
## A Breach of Trust
The December 2024 breach was one of the largest in recent history, with over 6,500 school districts in the US and Canada affected. The attackers made off with sensitive information, including Social Security Numbers, names, addresses, and even medical information.
While PowerSchool paid a ransom to the attackers in an effort to have the stolen data wiped clean, it appears that this promise was not kept. Instead of deleting the data as promised, the hackers are now using it to extort schools for money.
"It was a difficult decision, and one which our leadership team did not make lightly," PowerSchool said. "But we thought it was the best option for preventing the data from being made public, and we felt it was our duty to take that action. As is always the case with these situations, there was a risk that the bad actors would not delete the data they stole, despite assurances and evidence that were provided to us."
## A Call to Action
PowerSchool has apologized for the threats posed by the breach and has confirmed that it will continue to work with law enforcement agencies to mitigate the damages and respond to the extortion attempts.
The company recommends that anyone affected take advantage of two years of free credit monitoring and identity theft protection software to mitigate the risks posed by the stolen information. This is a crucial step in protecting yourself and your loved ones from potential identity theft and financial harm.
### Protect Yourself
To avoid falling victim to similar attacks, it's essential to stay vigilant and take proactive steps to protect your personal data. Here are some tips:
* Regularly check your credit reports for any suspicious activity * Use strong passwords and enable two-factor authentication whenever possible * Be cautious when clicking on links or downloading attachments from unknown sources * Keep your operating system, browser, and software up-to-date with the latest security patches
By taking these steps and staying informed about the latest threats and vulnerabilities, you can significantly reduce your risk of becoming a victim of cybercrime.