An American education technology company, PowerSchool, is the latest giant to fall a victim of hacking and data breaches, which probably compromised millions of records of students and teachers in North America. As one of the leading providers of school records management software, PowerSchool serves 18,000 schools who manage data over 60 million students.
How the breach happened
The compromise was discovered on December 28 and was traced to a subcontractor’s account. The new report said, however, that another incident of hacking-a compromise of the access of a PowerSchool software engineer-may have had something to do with the breach. Malware infected the engineer’s computer and exfiltrated login credentials for internal systems, such as Slack, AWS, and other tools.
According to the logs retrieved by researchers, the infostealing malware known as LummaC2 was used to steal the engineer’s passwords. The malware extracted saved passwords and browsing histories from the web browsers of the engineer and uploaded them to a server run by cybercriminals. The stolen credentials were shared in cybercrime groups, which further exposed PowerSchool’s systems.
What Data Was Stolen?
The hackers accessed a range of sensitive personal information, including:
- Social Security numbers Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: