PowerSchool Data Breach

Please visit the PowerSchool Notice for any actionable steps: PowerSchool Site

February 5, 2025

On January 29, 2025, PowerSchool initiated the process of notifying individuals whose information was determined to be involved.

PowerSchool has engaged Experian, a trusted credit reporting agency, to provide complimentary identity protection and credit monitoring services to current and former students and educators who had information exfiltrated from PowerSchool SIS. PowerSchool is doing this regardless of whether an individual’s Social Security Number was exfiltrated. In the coming weeks, Experian (on behalf of PowerSchool) will be distributing direct email notifications to involved individuals for whom PowerSchool has sufficient contact information.

Additionally, PowerSchool has worked with Experian to set up a dedicated, toll-free call center to answer any questions associated with these offerings and the incident. All the information regarding the activation of and access to these services will be included in the email sent to you by Experian. If you would prefer to not wait for an email and instead gain the coverage immediately, please visit this web page for all needed information: http://www.powerschool.com/security/sis-incident/notice-of-united-states-data-breach/.

To help mitigate future issues related to vendor data breaches, we are continually reviewing the necessity of each piece of data in our systems and limiting information and access wherever possible. Protecting our students and teachers remains our top priority. Thank you again for all of your support and understanding during this time.

January 8, 2025

The District started to receive information over the last 20 hours about an international cybersecurity breach that occurred in December involving our Student Information System provider, PowerSchool. This breach impacted school districts across the country and world.

We determined that Mount Greylock Regional School District students' and staff information was compromised. The breach is no longer occurring, but data was downloaded.

PowerSchool contains our current and historical student and staff data, but not payroll information or special education data. For 52 of our students, PowerSchool also contained social security numbers. At this point in our very fast-paced investigation, we believe that all student and staff names, dates of birth, phone numbers, addresses, along with the 52 student social security numbers were compromised. Grade data and other Student Information System data was not a part of the accessed data. Usernames and passwords were not compromised as a result of the breach. These are all of the details we have at the moment regarding our local situation.