The NWT government has issued guidance to residents after some victims of the PowerSchool data breach reported being sent ransom demands.
Late last year, someone with login credentials for PowerSchool – student records software used by many school districts – stole information related to thousands of schools across various countries.
More than 35,000 past and current students and staff at Northwest Territories schools are affected. The full number of affected people is thought to be well into the millions.
In recent weeks, people and school districts elsewhere in Canada say they have faced extortion attempts from criminals who appear to have the data.
PowerSchool has confirmed it paid a ransom months ago on the understanding that the data would be deleted by the criminals at the time. It now appears that deletion did not happen.
Advertisement.
Advertisement.
While the GNWT said nobody in the territory has reported being affected yet, the territory set out recommendations in case that happens.
“If you have been affected by the breach and you are asked for ransom, do not engage or respond to these requests from the cybercriminal,” the GNWT wrote in a Tuesday statement.
“If you receive this type of email, you are encouraged to send it to the Government of Canada Cyber Centre. Do this by attaching the cybercriminal’s email as an attachment instead of just forwarding it. You can also notify your Education Body if you receive this type of email.
“If you have not already done so, register for credit and identity protection services offered by PowerSchool. Deadline to register is May 30, 2025.”
