Recent cyber attackers have gained access to previous student and teacher data from school districts using PowerSchool services. Following a breach in PowerSchool’s customer support portal in December, millions of K-12 students’ and teachers’ sensitive data, including names, addresses and Social Security numbers, may be at risk. PowerSchool aims to investigate urgently, notify those affected and offer credit monitoring or identity protection when necessary. The firm hasn’t confirmed the number of affected parties but has begun rolling out a response plan.
Exim Mail Transfer Vulnerability Let Attackers Inject Malicious SQL Queries
A critical SQL injection vulnerability (CVE-2025-26794) in Exim affects over 60% of internet mail servers. Authenticated attackers can execute arbitrary SQL commands under specific configurations.
