PowerSchool has reported that the hacker behind a December cyberattack is now extorting individual school districts, threatening to release stolen student and teacher data unless a ransom is paid. Despite previously paying a ransom to prevent such an incident, PowerSchool acknowledges that the threat actor has not kept their promise to delete the data, leading to renewed extortion attempts against affected schools.

A 19-year-old college student, Matthew D. Lane, pleaded guilty to charges related to a cyberattack on PowerSchool that extorted millions by threatening to leak sensitive personal data of millions of students and teachers. The attack involved breaching a telecommunications company to access and steal confidential information before demanding a ransom from PowerSchool and subsequently targeting individual school districts for further extortion.

Red Hat is facing extortion from the ShinyHunters gang after a data breach involving nearly 570GB of sensitive information, including Customer Engagement Reports. The threat actors have leaked samples and set a deadline for ransom negotiations, while also collaborating with other hacking groups to enhance their extortion efforts.

Google has confirmed that a data breach involving Salesforce's CRM system has occurred, putting customer data at risk. The breach has led to extortion threats against Salesforce, raising concerns about the security of cloud-based services.

Salesforce has refused to pay a ransom demanded by a crime syndicate claiming to have stolen nearly 1 billion records from its customers. The group, known as Scattered LAPSUS$ Hunters, has threatened to leak the data unless Salesforce negotiates a ransom, citing numerous high-profile clients among the victims. Despite the situation's severity, Salesforce has stated it will not comply with the extortion demand.

Qantas is facing extortion from cybercriminals following a data breach that potentially exposed the personal information of 6 million customers. The airline has reported the incident to the Australian Federal Police and is advising customers to be vigilant against potential scams and phishing attempts. The attack is linked to threat actors known as Scattered Spider, who have previously targeted various sectors, including aviation and retail.

Coinbase has disclosed a data breach that resulted from an extortion attempt, where threat actors gained unauthorized access to customer information. The company is working to investigate the breach and mitigate any potential damage while notifying affected users.