Good morning,
I wanted to take a moment to inform you about a recent cybersecurity incident involving PowerSchool, which is the platform we use to manage student data. PowerSchool recently notified us that system data was compromised, but they have promptly identified the affected account and disabled it. It’s also important to know that this is a national event that has impacted all schools that utilize PowerSchool. This was not limited to just Norwich Free Academy.
I want to reassure you that PowerSchool has taken all necessary steps to contain the incident and prevent any further unauthorized access. PowerSchool believes the impacted information has been deleted without replication or dissemination.
The compromised data includes the following information: students' names, mailing addresses, birth dates, NFA IDs, and medical alerts for teachers, including allergies. Additionally, teacher names and their NFA email addresses were also included.
To reiterate: PowerSchool has stated that the offenders have deleted the information and will not share it publicly.
In response to this incident, PowerSchool has strengthened their password policies and controls, continuing to prioritize and invest significantly in their cybersecurity defenses.
We will continue to navigate this situation and share any information as warranted. If you have any questions or concerns, please feel free to reach out to me at girasolia@nfaschool.org.
Best regards,
Anthony Girasoli, Ph. D.
Director of Information Technology