\n<\/p>\n
A notorious hacking group has claimed responsibility for last year\u2019s data breaches at Harvard University and the University of Pennsylvania (UPenn) and published the data that they claim to have stolen from the two schools.\u00a0<\/p>\n
On Wednesday, the group known as ShinyHunters<\/a> published what it claims are more than 1 million records from each university on the group\u2019s dedicated leak site, which the gang uses to extort its victims.<\/p>\n In November, UPenn confirmed a data breach<\/a> of \u201ca select group of information systems related to Penn\u2019s development and alumni activities.\u201d At the time, the hackers also sent alumni emails announcing the hack from official university addresses<\/a>.\u00a0<\/p>\n The university blamed the breach on social engineering<\/a>, an attack that often relies on hackers impersonating someone and tricking them into doing something they would not normally do. In its official breach disclosure web page<\/a>, which has since been taken offline, UPenn did not say exactly what type of data the hackers stole, simply saying the cybercriminals accessed \u201csystems related to Penn\u2019s development and alumni activities.\u201d<\/p>\n \t\t\tDo you have more information about these breaches, or similar attacks? From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram, Keybase and Wire @lorenzofb, or email<\/a>.\t\t<\/div>\n TechCrunch verified a portion of the dataset by confirming with alumni and public records, such as matching the data against student ID numbers.<\/p>\n Later in November, Harvard University also confirmed a breach on its alumni systems, blaming it on a voice phishing<\/a> attack, meaning an attack where hackers tricked the targets into clicking on a link or opening an attachment with a voice call.\u00a0<\/p>\nContact Us<\/h4>\n