McDonald Hopkins, PLC represents the Cloudcroft Municipal Schools in relation to a suspected third-party security incident. Cloudcroft Municipal Schools is disclosing the following suspected third-party security incident.
Date of Suspected Third-Party Incident: Cloudcroft Municipal Schools learned on or about January 9, 2025, that sensitive and identifiable information related to the education institution, maintained by its third-party service provider, PowerSchool, was involved in the cybersecurity incident wherein an unauthorized party gained access to the PowerSchool Student Information System environment.
Type of Incident/Method of Intrusion: Third-party incident; PowerSchool.
Impact: Upon learning of the incident, Cloudcroft Municipal Schools took steps to confirm the incident was fully remediated and sought additional information from PowerSchool about the incident as it pertains to the hosted data. On or about January 27, 2025, PowerSchool confirmed the scope of information potentially impacted and Cloudcroft Municipal Schools subsequently determined on April 1, 2025, that 210 individuals required a FERPA recordation. Impacted information generally included full name and limited medical alert information.
Information Security Program Point of Contact: Jocelyne Gillespie
Remediation Status: Cloudcroft Municipal Schools is working with PowerSchool to ensure notice is provided to the appropriate individuals and regulators consistent with federal and state law.
Regards,
Hannah G. Babinski
Attorney
T: 248-402-4074
hbabinski@mcdonaldhopkins.com
www.mcdonaldhopkins.com
39533 Woodward Avenue
Suite 318
Bloomfield Hills, MI 48304
