On 1/7/25, ICS was notified by PowerSchool that a threat actor had gained access to PowerSchool corporate systems from 12/19/24 though 12/28/24. From inside those systems, they were then able to gain access to an unknown number of PowerSchool SIS customers’ data. After an extensive review of our own PowerSchool, it appears that ICS is one of the customers that had data stolen. The data that was exported included staff and student demographic type data. No data was deleted or altered. PowerSchool has assured all customers that the access point has been closed and that tighter controls have been put into place to protect customers’ data going forward.

Wednesday and Thursday PowerSchool’s Chief Legal Counsel and Chief Executive Officer said they are still working through the investigation process and are asking for our patience and understanding while they put together the next phase of support, which could include Identity Protection for any affected persons.

At this point, we have engaged our cyber incident response plan for this scenario and reported the incident to the Indiana Office of Technology in accordance with HEA1169. We should have more information from PowerSchool on or about 1/17/25 according to their current timeline. If any new important information is discovered we will share it right away. Please see this link for some steps to follow as good general practice to protect yourself after a data breach.

WTHR coverage of the PowerSchool data breach

https://www.wthr.com/article/money/whats-the-deal/nationwide-data-breach-compromises-student-faculty-data-powerschool-indiana-indianapolis-hacker/531-a5f2370e-daf1-4f9e-9b16-296f4afbf290

PowerSchool’s official public notice

https://www.powerschool.com/security/sis-incident/