PowerSchool Notice of Data Breach Impacting MOSAICS Public School
Notification Posted on February 12, 2025
PowerSchool has posted its Notice of Data Breach For Individuals in the United States to share some important information regarding the recent cybersecurity incident involving personal information belonging to current or former students and teachers of schools and districts like MOSAICS Public School that use or used software called PowerSchool Student Information System (SIS). https://www.powerschool.com/security/sis-incident/notice-of-united-states-data-breach/. The PowerSchool Notice contains important instructions regarding enrolling in two year of complimentary identity protection services through Experian.
Notifications Sent to Families
Dear Families,
We are writing to update you regarding the recent cybersecurity incident involving PowerSchool, the software vendor that provides our Student Information System (SIS).
PowerSchool let us know they have initiated the process of notifying individuals whose information was determined to be involved.
As previously mentioned, PowerSchool has engaged Experian, a trusted credit reporting agency, to provide complimentary identity protection and credit monitoring services to current and former students and educators that had information exfiltrated from PowerSchool SIS. PowerSchool is doing this regardless of whether an individual’s Social Security Number was exfiltrated. In the coming weeks, Experian (on behalf of PowerSchool) will be distributing direct email notifications to involved individuals (or their parent/guardian, as applicable) for whom PowerSchool has sufficient contact information.
Additionally, PowerSchool has worked with Experian to set up a dedicated, toll-free call center to answer any questions associated with these offerings and the incident. All the information regarding the activation of and access to these services will be included in the email sent to you by Experian. Whether or not you receive an email, you may also visit PowerSchool’s website to learn how to activate the offering from Experian, linked here: http://www.powerschool.com/security/sis-incident/notice-of-united-states-data-breach/.
Protecting our students and teachers remains our top priority. Thank you again for all of your support and understanding during this time.
Dear families and educators of the MOSAICS’ community,
As we previously communicated, PowerSchool – a cloud-based software vendor used by our school – recently experienced a cybersecurity incident involving unauthorized access to certain information in the PowerSchool Student Information System (SIS).
We are reaching out to share more information and next steps that we recently received directly from PowerSchool:
- Identity Protection and Credit Monitoring Services: PowerSchool has engaged Experian, a trusted credit reporting agency, to offer two years of complimentary identity protection services for all students and educators whose information from our PowerSchool SIS was involved. This offer will also include two years of complimentary credit monitoring services for all adult students and educators whose information was involved.
- Notification to Individuals Involved: Starting in the next few weeks, in collaboration with Experian, PowerSchool will provide notice to students (or their parents/guardians if the student is under 18) and educators whose information was involved, as well as a phone number to answer any questions you may have about the incident. The notice will include the identity protection and credit monitoring services offer (as applicable). My understanding is this information will come directly from PowerSchool to our impacted families and staff members. Our school will pass along any information we receive as well.
- As soon as PowerSchool learned of the incident, they engaged cybersecurity response protocols and mobilized senior leadership and third-party cybersecurity experts to conduct a forensic investigation of the scope of the incident and to monitor for signs of information misuse. PowerSchool is not aware of any identity theft attributable to this incident.
In the meantime, I encourage you to visit https://www.powerschool.com/security/sis-incident/ for up-to-date information on the cybersecurity incident. We care deeply about the welfare of our MOSAICS’ families and will continue to do everything we can to support you. Thank you for the important role you play in our community and your shared commitment to putting our students first.
Notice Sent to Families on January 10, 2025
Dear MOSAICS Families –
We are writing to make you aware of a recent cybersecurity incident involving PowerSchool, a software vendor which provides our Student Information System (SIS).
On Tuesday, January 7, 2025, PowerSchool informed our leadership team that they experienced a cybersecurity incident involving unauthorized access to certain PowerSchool SIS customer data. Unfortunately, they let us know today that information belonging to some of our school’s families and educators was compromised.
PowerSchool informed us that the taken data primarily includes parent and student contact information with data elements such as name and address information. Across their customer base, they have determined that for a portion of individuals, some personally identifiable information (PII), such as medical information, was impacted. They are working with urgency to complete their investigation and determine whether PII belonging to our students was included.
Protecting our students is something we take seriously. With PowerSchool’s help, more information and resources (including credit monitoring or identity protection services if applicable) will be provided to you as it becomes available.
Thank you for your patience and understanding.
