North Carolina Attorney General Jeff Jackson initiated an investigation into the PowerSchool data breach.
What happened
In December 2024, a hacker accessed PowerSchool’s systems, potentially compromising the information of millions of students and teachers nationwide, including 4 million individuals in North Carolina. On February 7, 2025, North Carolina Attorney General Jeff Jackson announced an official investigation into the incident to determine whether PowerSchool violated any laws in handling and securing user data.
The North Carolina Department of Justice (NCDOJ) requires all businesses and organizations to report the incidents, and in 2024 alone, over 2,250 breaches were reported, affecting 6.7 million residents. The investigation aims to hold PowerSchool accountable.
What was said
“I’m a parent who uses PowerSchool, so I know what millions of North Carolina families are concerned about with this data breach,” said Attorney General Jeff Jackson. “I’m investigating PowerSchool to determine if they broke any laws in this process, and I’ll take additional legal action if necessary. We’ll continue working to guard our state from data breaches and hold those who fail to properly protect information accountable.”
Related: HIPAA Compliant Email: The Definitive Guide
FAQs
What is a data breach?
A data breach is a security incident where unauthorized parties access sensitive or confidential information.
What causes data breaches?
Data breaches can be caused by:
- Innocent mistakes
- Malicious insiders
- Hackers
What are the common types of data breaches?
The types of data breaches include:
- Phishing attacks
- Malware and ransomware
- Insider threats
Kirsten Peremore
