Search
Get in Touch
News

University of Pennsylvania confirms recent cyberattack led to major data theft

TechRadar
TechRadar
  • Hackers accessed University systems via stolen SSO credentials, stealing data on 1.2 million individuals
  • Offensive mass email followed partial lockout; University later confirmed the breach was real
  • Attack exploited weak MFA enforcement among senior staff through social engineering

It seems the “obviously fake” and “fraudulent” claims recently made by the University of Pennsylvania hackers are not so “obviously fake” and “fraudulent”, after all – as the organization has now confirmed hackers stole files from its systems.

Cybercriminals recently revealed they had obtained “full access” to a University employee’s PennKey SSO account, which gave them access to its VPN, Salesforce data, Qlik analytics platform, SAP business intelligence system, and SharePoint files. Using that access, they stole data on approximately 1.2 million students, alumni, and donors.

The information stolen allegedly includes people’s names, dates of birth, addresses, phone numbers, estimated net worth, donation history, and demographic details (race, religion, sexual orientation, and similar).

Investigating the attack

After being thrown out from most of the network, they used what remaining access they had to send an angry email to roughly 700,000 recipients:

“The University of Pennsylvania is a dog**** elitist institution full of woke ret*rds. We have terrible security practices and are completely unmeritocratic,” the email said.

“We hire and admit morons because we love legacies, donors, and unqualified affirmative action admits. We love breaking federal laws like FERPA (all your data will be leaked) and Supreme Court rulings like SFFA.”

At first, the University of Pennsylvania described the emails as “obviously fake” and “fraudulent”, but backtracked on these claims in a recent update:

“Penn’s staff rapidly locked down the systems and prevented further unauthorized access; however, not before an offensive and fraudulent email was sent to our community and information was taken by the attacker,” the update reads. “Penn is still investigating the nature of the information that was obtained during this time.”

Penn also said that the attack was done through social engineering. Most employees are required to use multi-factor authentication (MFA) but according to TechCrunch, some of the top brass was allowed to skip this step.

Via TechCrunch

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Read more @ TechRadar

Previous article
Early Black Friday deal alert: MSI’s 27-inch Full HD monitor now only £68 with a three-year warranty
Next article
Rockstar co-founder Dan Houser says Red Dead Redemption 3 ‘will probably happen’ but would be sad not to be part of it
TechRadar
TechRadar

Latest posts

Apple is turning Siri into an AI bot that’s more like ChatGPT

The Verge - 0
Apple is planning a big Siri overhaul that will transform the voice assistant into an AI chatbot built directly into its iPhone and Mac,...

Anthropic’s new Claude ‘constitution’: be helpful and honest, and don’t destroy humanity

The Verge - 0
Anthropic is overhauling Claude's so-called "soul doc." The new missive is a 57-page document titled "Claude's Constitution," which details "Anthropic's intentions for the model's...

Apple is reportedly working on an AirTag-sized AI wearable

The Verge - 0
Apple is working on an AI-powered wearable pin with cameras and microphones designed to pick up a user's surroundings, according to a report from...

Everyone can hear your TV in their headphones using this transmitter

The Verge - 0
Sennheiser’s new Auracast transmitter can be purchased as part of a bundle with its new wireless headphones. | Image: Sennheiser As we've previously lamented, one...

Blue Origin’s Starlink rival TeraWave promises 6 terabit satellite internet

The Verge - 0
The Blue Origin New Glenn rocket lifts off at Launch Complex 36 in its second launch attempt at Cape Canaveral Space Force Station on...

Apple is reportedly developing a wearable AI pin

Engadget - 0
Apple will reportedly try to succeed where Humane failed (miserably). On Wednesday, The Information reported that the iPhone maker is working on an AI...

Apple is reportedly overhauling Siri to be an AI chatbot

Engadget - 0
Apple has been spinning its wheels for many months over its approach to artificial intelligence, but a strategy finally appears to be emerging for...

Marshall’s new Heddon hub adds multi-room audio to speakers with Auracast

Engadget - 0
Marshall plans to add seamless multi-room audio to its Bluetooth speakers via a newly announced music streaming hub called Heddon. The $300 hub makes...

A new LinkedIn phishing scam is targeting executives online – make sure you don’t fall for this

TechRadar - 0
Sophisticated LinkedIn phishing uses fake job ads to target executives Attacks employ DLL sideloading and Python tools to install remote access trojansReliaQuest warns phishing...

Report: Apple does about-face on Siri chatbot — and it might compete directly with ChatGPT and Google

TechRadar - 0
Apple promised us this was never the plan...until we guess, it became the plan: A new report from Apple soothsayer Mark Gurman says Apple...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!

The AIVAnet is a collector and classifier of app news articles and online technology news, which works automatically by collecting and collating the RSS feeds from popular sites (IOS news feed,latest tablet news, etc.).

The articles deal with mobile app reviews, especially with android reviews, and IOS. One of the central thematic axes is also the comparisons. You can find articles with tablet reviews, comparisons and mobile OS systems or mobile OS stats.

We also provide some of the most popular app news express, for android and IOS or windows phone. The online technology news that you can find in our pages are just opinions and ideology, allowing you to see how different news agencies present the same news.

AIVAnet is supported by Cloud Services Store

About Us

© AIVAnet | All rights reserved