Publishing giant Scholastic hit by hackers, data on 8 million people stolen

News
By published

Millions of email addresses and other information taken

Red padlock open on electric circuits network dark red background
(Image credit: Shutterstock/Chor muang)
  • Hacker tells media they broke into publishing giant Scholastic
  • They then stole sensitive information on millions of people
  • The data will not be made public, and was stolen "for fun", hacker says

Publishing and media giant Scholastic has allegedly suffered a cyberattack in which it lost sensitive information on millions of people.

A hacker going by the alias “Parasocial” claims to have stolen the data through an employee portal, including people’s names, email addresses, phone numbers, and postal addresses, for US customers and “education contacts”. This latter group makes up roughly a million, out of a total eight million entries.

In its report, Daily Dot says the database contains more than four million unique email addresses. Furthermore, Parasocial provided its researchers with a sample, from which they were able to deduce that the data is legitimate. They did not reach out to the people directly, but came to some conclusions after reading their LinkedIn information and other social media accounts.

Authentic sample

Scholastic is known for its books, educational materials, and popular series like Harry Potter, The Hunger Games, and Goosebumps. Parents, teachers, and administrators, can sign up for an account on the platform. Parents need to enter full data on their children, and teachers need to list the school they work for.

The attacker said their motives were simple entertainment, and that they will not be publishing the archives on the internet.

“To Scholastic; lol get pwned. This is a lesson to be learned the hard way. Don’t let your customers take the hit for your security failures, use MFA,” Daily Dot cited Parasocial as saying, adding they would have taken even more information, but were stopped by the server’s export limits.

In a statement to the Daily Dot, a representative for Scholastic said the company was investigating the claim.

“Scholastic takes the security of our customers’ data seriously with extensive systems and protocols, and are investigating this claim thoroughly,” they said.

You might also like

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
How to prevent cyberattacks
PowerSchool breach worse than thought, company says "all" student and teacher data accessed
A digital representation of a lock
PowerSchool hit by cyberattack which saw student and teacher data stolen
security
PowerSchool hack keeps getting worse - 62 million students now thought to be affected
A computer being guarded by cybersecurity.
Zacks Investment hit in data breach - 12 million users potentially at risk
ID theft
Over a million patients potentially hit after another US healthcare provider hit by cyberattack
A digital themed isometric showing a neon padlock in the foreground, and a technological diagram of a processor logic board in the background.
Major breach hits employee screening firm - 3.3 million affected as hackers steal DISA data
Latest in Security
Data Breach
Thousands of healthcare records exposed online, including private patient information
China
Juniper patches security flaws which could have let hackers take over your router
Representational image depecting cybersecurity protection
GitLab has patched a host of worrying security issues
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
AI agents can be hijacked to write and send phishing attacks
China
Volt Typhoon threat group had access to American utility networks for the best part of a year
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Latest in News
Google Pixel 8a in aloe green showing
Google Pixel 9a benchmark link teases the performance of the upcoming mid-ranger
Quordle on a smartphone held in a hand
Quordle hints and answers for Monday, March 17 (game #1148)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Monday, March 17 (game #379)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Monday, March 17 (game #645)
Apple iPhone 16 Pro HANDS ON
Leaked iPhone 17 dummy units may have given us our best look yet at all four models
A super close up image of the Google Gemini app in the Play Store
It's official: Google Assistant will be retired for phones this year, with Gemini taking over
More about security
Money

Financial leaders still rely on regular tools like Excel for automation tasks over AI
Half man, half AI.

Generative AI has a long way to go as siloed data and abuse of its capacity remain a downside – but it does change the game for security teams
Nvidia Frame Generation vs native performance

What is Frame Generation? The GPU technology explained in 2025?

See more latest
Most Popular
BraX3
This obscure brand wants to launch the most privacy-friendly smartphone ever without Google, but with a mysterious open-source OS at its core
HAMR
Seagate reportedly sold two billion GBs worth of storage to two of the world's largest tech companies
Google Pixel 8a in aloe green showing
Google Pixel 9a benchmark link teases the performance of the upcoming mid-ranger
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Monday, March 17 (game #645)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Monday, March 17 (game #379)
Quordle on a smartphone held in a hand
Quordle hints and answers for Monday, March 17 (game #1148)
Oracle
Bluehost owner is moving to Oracle Cloud, so could thousands of websites be about to migrate?
Money
Financial leaders still rely on regular tools like Excel for automation tasks over AI
Two examples of the Asus Fragrance Mouse MD101 sitting on a table
Your next computer mouse could have a fragrance compartment for aromatherapy oils – and this Asus idea is nothing to sniff at
Apple iPhone 16 Pro HANDS ON
Leaked iPhone 17 dummy units may have given us our best look yet at all four models