I say this as a CEO: From now on, when children’s health data is compromised because multi factor authentication was not enforced, fire the CEO, not the CISO. I mean, sure, fire the CISO as well, but the CEO bears the responsibility. An update on the PowerSchool breach from the ever-incise @Dan Goodin

Ars Technica

Data breach hitting PowerSchool looks very, very bad

Schools are now notifying families their data has been stolen.