A 20-year-old college student studying cybersecurity orchestrated the largest education data breach in American history, exposing the personal information of 60 million children and 10 million teachers before heading to federal prison.
Story Snapshot
- Matthew Lane, 20, confessed to hacking PowerSchool at age 19, compromising data from 80% of North American school districts including social security numbers and medical records
- PowerSchool paid approximately $3 million in Bitcoin ransom while Lane faces four years in federal prison and $14 million in restitution
- Lane described hacking as an addiction worse than drugs, starting cyberattacks at age 15 against Fortune 500 companies for thrills and luxury purchases
- White House briefings identified a “Gen Z hacker” trend dubbed “Minor Mayhem,” marking tech-savvy teens as a growing national security threat
- The breach exposed critical vulnerabilities in education technology systems that store sensitive data on American families, demanding stronger cybersecurity protections
Massive Education Breach Exposes Millions of Families
Matthew Lane executed the largest cyberattack in U.S. education history by exploiting stolen contractor credentials to breach PowerSchool in fall 2024.
The attack compromised sensitive data belonging to 60 million students and 10 million teachers across North America, including social security numbers, grades, and medical information.
PowerSchool, which serves 80% of school districts in the United States and Canada, paid approximately $3 million in Bitcoin ransom to prevent full data exposure. Parents in affected areas, such as the Chicago suburbs, scrambled to freeze credit accounts and protect their children’s identities.
Teen Hacker’s Addiction Fueled Cybercrime Spree
Lane began his hacking career at age 15, developing custom vulnerability tools that enabled initial access into major corporations. He described the experience as an unparalleled “natural high” that surpassed any drug addiction, driving him to target Fortune 500 companies systematically.
Lane used his ill-gotten gains to fund a lavish lifestyle featuring designer items and drugs, masking personal insecurities behind criminal success.
The Massachusetts college student ironically majored in cybersecurity and computer science while conducting attacks, using his technical education to refine criminal methods. His custom tools facilitated 90% of his initial breaches, followed by lateral movement across networks and data exfiltration to support ransom demands.
Justice System Confronts Remorseful Criminal
Federal authorities arrested Lane in 2025 following an FBI investigation, securing guilty pleas on four charges including unauthorized computer access, identity theft, and cyber extortion. In November 2025, a judge sentenced him to four years in federal prison and ordered restitution totaling over $14 million.
Lane granted an exclusive ABC News interview days before reporting to a Connecticut federal prison in early 2026, expressing gratitude toward law enforcement for stopping his criminal trajectory.
He acknowledged his actions as “disgusting” and “greedy,” accepting imprisonment as deserved punishment while hoping to serve as a cautionary tale for other young hackers. Lane texted ABC News from his parents’ car en route to prison, marking the end of his freedom.
ABC News speaks with a young hacker about what experts call a wide-ranging menace: a new generation of tech-savvy teens who are uniquely dangerous and surprisingly young.
Read more: https://t.co/dT7i0OBzz3 pic.twitter.com/VPmlS8zvzK
— ABC News (@ABC) April 14, 2026
Gen Z Hackers Emerge as National Security Crisis
Federal authorities identified Lane as emblematic of a dangerous new phenomenon termed “Minor Mayhem” or the “Gen Z hacker” trend that prompted White House Situation Room briefings.
These tech-fluent teenagers exploit vulnerabilities for thrills and profit, posing a uniquely dangerous threat given their technical sophistication and youth.
Cybersecurity experts described this generation as a “wide-ranging menace” that capitalizes on supply chain weaknesses, as evidenced by Lane’s use of publicly available stolen contractor credentials.
The trend reflects failures in early intervention and monitoring programs, allowing talented young people to channel technical skills toward destructive rather than productive purposes.
'Addicted to hacking': Young hacker behind historic breach speaks out for 1st time, before reporting to prison – ABC News https://t.co/0vewhE2gQg #cybersecurity #cybercrime #PowerSchool #ransom pic.twitter.com/zcHIOtHgxE
— Bob Carver ✭ (@cybersecboardrm) April 14, 2026
The PowerSchool breach exposed systemic vulnerabilities in education technology infrastructure that millions of American families rely on to manage student records and communications.
With 80% of the market reliant on a single platform, the attack highlighted catastrophic risks posed by concentrated data storage without adequate safeguards.
Parents and educators now face long-term identity-theft concerns as schools reassess cybersecurity investments and vendor oversight. Lane’s case reveals how supply chain weaknesses—stolen contractor credentials—enabled unprecedented access, demanding stronger authentication protocols and monitoring across the education technology sector.
The $14 million restitution order, while symbolically significant, offers little practical compensation to the 70 million individuals whose private information was compromised by a teenager’s addiction.
