PowerSchool school database data leak
Data Leak
Summary
Hide ▲
Show ▼
A PowerSchool data leak exposed school databases holding personal information for 9.5 million teachers and 62.4 million students, creating major privacy and identity-theft risk. Attackers used stolen subcontractor credentials to enter the PowerSource customer support portal on December 19, 2024 and download the records. The stolen data spanned 6,505 school districts and included sensitive items such as Social Security numbers and medical data.
Related Happenings
7-Eleven hit by network compromise
Incident
First: 19.05.2026 17:16
Last: 19.05.2026 17:16
Sources 1
About this happening:
**7-Eleven** is a **victim-focused breach incident** in which an **unauthorized third party** accessed systems used to store **franchisee documents** on **April 8, 2026**, trigger...
7-Eleven hit by network compromise
IncidentAbout this happening: **7-Eleven** is a **victim-focused breach incident** in which an **unauthorized third party** accessed systems used to store **franchisee documents** on **April 8, 2026**, trigger...
7-Eleven franchisee-docs and Salesforce data leak
Data Leak
First: 18.05.2026 14:25
Last: 18.05.2026 14:25
Sources 1
About this happening:
**7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
7-Eleven franchisee-docs and Salesforce data leak
Data LeakAbout this happening: **7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
Latest development: 26.05.2026 10:01
Have I Been Pwned analyzed the leaked 7-Eleven data and estimated that the breach exposed personal information for 185,300 people, including names, dates of birth, unique email addresses, phone numbers, and physical addresses. The exposed archive was tied to ShinyHunters' extortion campaign against 7-Eleven and followed the group's leak-site posting after ransom demands were not met.
BlackFile vishing extortion campaign targeting retail and hospitality organizations
Campaign
First: 24.04.2026 21:26
Last: 24.04.2026 21:26
Sources 1
About this happening:
The **BlackFile** campaign is driving **vishing-based data theft and extortion** against **retail and hospitality organizations**, putting employee credentials and enterprise data...
BlackFile vishing extortion campaign targeting retail and hospitality organizations
CampaignAbout this happening: The **BlackFile** campaign is driving **vishing-based data theft and extortion** against **retail and hospitality organizations**, putting employee credentials and enterprise data...
Infinite Campus Salesforce records theft claim
Data Leak
First: 24.03.2026 15:48
Last: 24.03.2026 15:48
Sources 1
About this happening:
**Infinite Campus** is warning customers after **ShinyHunters** claimed it stole **Salesforce records** tied to the company, raising the risk of exposure for **PII** and internal...
Infinite Campus Salesforce records theft claim
Data LeakAbout this happening: **Infinite Campus** is warning customers after **ShinyHunters** claimed it stole **Salesforce records** tied to the company, raising the risk of exposure for **PII** and internal...
Betterment customer data leak after January systems breach
Data Leak
First: 05.02.2026 13:16
Last: 05.02.2026 13:16
Sources 1
About this happening:
**Betterment** suffered a **systems breach in January** that exposed personal information from **about 1.4 million accounts**. The stolen dataset included **email addresses, names...
Betterment customer data leak after January systems breach
Data LeakAbout this happening: **Betterment** suffered a **systems breach in January** that exposed personal information from **about 1.4 million accounts**. The stolen dataset included **email addresses, names...
Timeline
-
15.10.2025 22:41 2 articles · 7mo ago
PowerSchool PowerSource breach and database download
Exploitation ObservedAttackers used stolen subcontractor credentials to breach PowerSchool's PowerSource customer support portal on December 19, 2024, and a maintenance tool to download school databases containing the personal information of 9.5 million teachers and 62.4 million students from 6,505 school districts in the U.S., Canada, and other countries.
Show sources
- PowerSchool hacker gets sentenced to four years in prison — www.bleepingcomputer.com — 15.10.2025 22:41
- PowerSchool hacker gets sentenced to four years in prison — www.bleepingcomputer.com — 15.10.2025 22:41
-
15.10.2025 22:41 1 articles · 7mo ago
PowerSchool ransom demands for stolen data
Victim Impact UpdateAfter stealing sensitive student and faculty data from PowerSchool, the operators sent ransom demands for $2.85 million in Bitcoin on December 28, and the ransom letters claimed to be from Shiny Hunters.
Show sources
- PowerSchool hacker gets sentenced to four years in prison — www.bleepingcomputer.com — 15.10.2025 22:41
-
15.10.2025 22:41 2 articles · 7mo ago
PowerSchool hacker sentenced in federal court
Legal Policy Action UpdateA U.S. District Judge sentenced Matthew D. Lane of Worcester, Massachusetts, to four years in prison, ordered $14 million in restitution, and imposed a $25,000 fine for orchestrating the PowerSchool cyberattack.
Show sources
- PowerSchool hacker gets sentenced to four years in prison — www.bleepingcomputer.com — 15.10.2025 22:41
- Texas sues PowerSchool over breach exposing 62M students, 880k Texans — www.bleepingcomputer.com — 04.09.2025 21:01