University of Nottingham Confirms Major Cyberattack, Student Data Compromised

The University of Nottingham, a prominent UK Russell Group institution, has officially acknowledged a significant cyberattack targeting its student records system. The incident has been attributed to the notorious cybercriminal group ShinyHunters, which publicly claimed responsibility for the breach. This confirmation comes after ShinyHunters asserted that they had successfully exfiltrated a substantial volume of data from the university's platforms.

The cybercriminals specifically alleged the theft of approximately 40 gigabytes of sensitive information. This cache purportedly includes various categories of personal and financial data, such as billing and payment records, credit card details, student finance information, and "campus portal exports." Adding gravity to the claims, ShinyHunters indicated that the compromise extended beyond the main UK campus, affecting the University of Nottingham's international campuses in Malaysia and China. Further substantiating the breach, the widely-used breach notification service Have I Been Pwned incorporated a 10 GB dataset, linked to the ShinyHunters leak, into its database, indicating that around 454,600 user accounts were impacted.

In response to the attack, the University of Nottingham stated it is collaborating with the third-party provider responsible for maintaining the affected platform to conduct a thorough forensic investigation. The institution has promptly reported the incident to relevant UK authorities, including Action Fraud and the Information Commissioner's Office (ICO), committing to ongoing cooperation as the inquiry progresses. The university also pledged to provide advice and support to students concerned about their personal data, underscoring the critical global challenges faced by educational institutions in safeguarding sensitive information against sophisticated cyber threats.