Health Insurance Portability and Accountability Act (HIPAA)

Subscribe to Health Insurance Portability and Accountability Act (HIPAA) via RSS

The PowerSchool Breach: A Privacy Lesson on Third-Party Risk Exposure

By David Fioccola, Aaron Francis & Courtland Cuevas on March 31, 2025

Key Takeaways:

Ed tech company PowerSchool’s recent breach exposed the data of approximately 60 million students and 10 million educators.
Hacker gained access via a compromised employee password and remained undetected for nine days.
Sensitive personal data, including Social Security numbers and medical histories, was potentially compromised, raising a number of legal and regulatory concerns.
The breach underscores the urgent need for stronger third-party oversight and security requirements.

Proskauer and our platform provider LexBlog each use cookies to personalize content and ads, to provide social media features and to analyze traffic. Each of us also share information about your use of our site with our social media, advertising and analytics partners. If you are happy for us to store these cookies on your device please click ‘Accept Cookies.' For more information, please see here and here.

Proskauer on Privacy

Health Insurance Portability and Accountability Act (HIPAA)

The PowerSchool Breach: A Privacy Lesson on Third-Party Risk Exposure

About Proskauer Rose LLP

Topics

Archives