Cullman City Schools (CCS) in Alabama recently addressed a cybersecurity incident involving the PowerSchool software, which is used as the district’s student information system. CCS was alerted on January 7, 2025, about unauthorized access to certain customer data through PowerSchool’s PowerSource portal, with the breach being initially detected on December 28, 2024. While PowerSchool confirmed the incident was contained and there was no evidence of ongoing unauthorized activity, CCS took swift action to investigate and reassure its community.
The compromised data included personal information such as names, addresses, and email addresses, although no social security numbers were impacted since CCS does not collect that information. As part of the response, PowerSchool deactivated the compromised credentials and implemented additional security measures to prevent future breaches. To protect the affected individuals, PowerSchool is also offering credit monitoring and identity protection services.
CCS is working closely with PowerSchool to ensure that all impacted parties, including families, educators, and other stakeholders, receive accurate and timely updates. The district has also engaged with the Alabama State Department of Education to align its response with state guidelines. Communications will continue as the investigation progresses, providing transparency about the scope and resolution of the incident.
In response to the breach, CCS expressed gratitude for the quick action taken by PowerSchool and its enhanced security measures. The district reaffirmed its commitment to safeguarding personal data and maintaining the trust of the community. Going forward, CCS will continue to assess its security practices and provide further information to ensure that families and stakeholders are kept informed and protected.
Reference:
