We are writing to inform you of a recent security incident involving PowerSchool, the provider of our student information system (SIS). Yesterday, PowerSchool notified us of a data breach that has impacted school districts nationwide.
PowerSchool confirmed it suffered a cybersecurity incident that allowed a threat actor to steal the personal information of students and staff from school districts using its PowerSchool SIS platform. PowerSchool has confirmed that the stolen data primarily contains contact details such as names and addresses.
Upon further investigation, it was discovered that the breach also involved unauthorized access to our district PowerSchool system leading to the exposure of limited demographic data related to our students.
We want to assure you that the information involved is limited primarily to directory information for students and staff, such as demographic data like names, addresses, phone numbers. It did not include any financial, academic, or behavioral records.
PowerSchool has enacted their security protocols to contain the breach and has since taken significant steps to secure their systems, including password resets and enhanced security measures.
As a district we are deeply committed to maintaining the highest standards of data protection. While we have a number of systems in place to protect student data, this breach was out of our control. However, PowerSchool has assured us that the breach is contained, and there is no evidence of ongoing unauthorized activity. We will be staying vigilant and reviewing any related accounts for unusual activity as a precaution. We are working closely with the State of Wyoming Cyber Assistant Response Effort (CARE) as well as the Wyoming Department of Education (WDE) to appropriately address this breach.
While we currently have no evidence of misuse of the exposed information, we encourage parents and guardians to remain vigilant. Monitor any communications, accounts and/or credit reports linked to your directory information and report any suspicious activity.
PowerSchool will be releasing more information to affected districts worldwide, and as we get that information, we will communicate that to you using a link found on the district’s website.
Information relating to this incident can be found on the district website along with a Fact and Questions (FAQ) from PowerSchool. To access go to the District website: www.uinta1.com, now click on the quick links on the right side of the page titled PowerSchool Breach.
Thank you for your understanding and patience as we address this matter. We remain dedicated to ensuring the safety and privacy of our students and staff. If you have additional questions, please email us at [email protected].
Sincerely,
Superintendent Ryan Thomas