If you don’t have students in a school using PowerSchool, you should still think about the method of attack and how it can be replicated on technology services you use. In this case, a set of third-party credentials were used to access a support portal. There was no multi-factor authentication (MFA) enforced on this support portal, and the support tunnel was wide-open. Two commonly used security measures have now been implemented: MFA is required to use the support portal, and the support tunnel is opened by request only.
Trusted IT Solutions