Skip To Main Content

PowerSchool Cybersecurity Incident

PowerSchool Cybersecurity Incident

Families and Staff,

On the afternoon of January 7, North Andover Public Schools was notified by PowerSchool, the vendor responsible for hosting and managing the district’s student information system, about a data breach that occurred in late December 2024 involving data stored on their off-site servers. This breach affected PowerSchool’s broader network and has impacted many school districts nationwide.

It is important to note that North Andover Public Schools does not collect or store sensitive information in the database that was breached. The majority of the data involved consists of information that is publicly available from other online resources.

PowerSchool has accepted full responsibility for this breach and assured us that they are conducting a thorough investigation. They have involved law enforcement as part of their response and implemented enhanced security measures to address vulnerabilities within their system. Additionally, PowerSchool has informed its customers that they do not expect the data to be shared or made public and believe it has been securely deleted without further replication or dissemination.

North Andover Public Schools, along with the Town of North Andover, is fully committed to safeguarding the information of students, staff, and families. While there is no evidence to suggest that other district systems have been affected, we remain vigilant and are working closely with PowerSchool to monitor the situation and ensure the security of all systems.

PowerSchool continues to investigate the cause and scope of the breach and will provide updates to school officials as new information becomes available. We will keep the community informed as we learn more.

Thank you for your patience,

North Andover IT Department