Why Nostr? What is Njump?
2025-01-08 21:11:52
in reply to

Adam Labay on Nostr: nprofile1q…7gqp6 Every PowerSchool SIS instance has a "maintenance" account, which ...

Every PowerSchool SIS instance has a "maintenance" account, which provides god-level access to the system. It's not username/password protected, but rather relies on a token passed from the PowerSource platform. The attacker got a low-level support engineer's PowerSource credentials, and used them to pull maintenance tokens for basically the entire kingdom. From there, ran a script to pull a pair of tables containing student and teacher PII.
Author Public Key
npub1a0gdexuksrz5l2l3n6rg8xeg5rcuqghxcazfzlan6xf0egh778ls0mmx90