Nebraska Catholic students and educators’ info compromised by global security breach of school software company

CV NEWS FEED // Multiple Catholic schools throughout Nebraska are among those impacted by a 2024 global security breach of the software company PowerSchool, when hackers accessed the personal information of staff and students.

As CatholicVote previously reported, PowerSchool announced on Jan. 7 to its customers that it was informed of the cyber attack Dec. 28, stating not all customers were affected. PowerSchool also said that it paid the hackers to ensure no stolen personal information would be released.

Various personal details of students and staff at Catholic diocesan schools in Nebraska were compromised, including names, addresses and some Social Security numbers, according to a Jan. 20 publication of News Press Now. 

In a preliminary assessment, the Lincoln Diocese determined that the Social Security numbers of seven active staff members within their district were compromised, News Press Now reported. 

“These situations are taken seriously and we are continuing to work with PowerSchool as we monitor the situation,” Dr. Cory Worrell, superintendent of the Waverly school district in East Central Nebraska stated in a Jan. 9 news release. “At this point, they are confident that the data is no longer compromised.”

PowerSchool will not release an exhaustive list of school districts involved in the security breach as the investigation is ongoing, according to News Press Now. 

The security breach has impacted schools throughout the United States and Canada, including Catholic schools in the Diocese of Evansville, Indiana, the Diocese of Green Bay, and numerous Catholic schools in Ontario, Canada, according to Bleeping Computer. 

Educators and students whose information was compromised will receive a notice from PowerSchool and a description of any categories of personal information that were exfiltrated, the company recently announced.

“PowerSchool will publish the notice on its website, circulate the notice to local media, and send the notice to email addresses of those involved,” the organization stated.

PowerSchool has announced on its website that it will offer two years of complimentary identity protection services for all students and educators whose information was involved.