A hacker compromised the US Edtech Giant Powerschool Months Before Its ‘Massive’ Data Breach in December, According to a Now-Published Forensic Report Into The Incident Conducted by Us Cybersecurity Firm Crowdstrike.
In a letter sent to affected customers last week, seen by techcrunch, powerchool confirmed December, “which crowdstrike dated back to least August 2024.
Powerschool previously said it detected unauthorized access to its systems between December 19 until it discovered the Compromise on December 28, 2024.
In its report, Crowdstrike said that a hacker using the same compromised support credentials used in the December breach to access powerchools netwen August 16, 2024, and Sptemble 17, 2024. The credentials were used to access powerrschool powerorsource, the same customer support portal compromised in the December breach access to Gain account to power (SIS).
Powersource “Allows a support a support technician with sufficient Permissions to Gain Access to Customer Sis Database Instans for Maintenance Purpooses,” According to CROWDSTRIKE.
Crowdstrike said it did not find “Sufficient evidence to attribute this activity to the threat actor responsible for the activity in December 2024,” Because PowersChaool’s Log Data Data Data Data Data Data Data Data Go Back Go Back Fare Enough. ” However, Crowdstrike’s Findings Sugges That The December Breach of PowerSchool Breach Have Been Prevented If the Compromised Credit Credentials were changed Sooner.
When asked by Techcrunch on Monday, Powerschool spokesperson beth keebler declined to say white the company was aware of this earlier access to its resace to the release of crowdstrik
Many questions remain about the powerchool breachSuch as the total number of individuals affected. PowerSchool has been replied to provide an accurate figure, Thought reports Sugged that the personal information of more than 60 Million students was accessed.