University of Nottingham Student and Alumni Data Compromised in Cyberattack

The University of Nottingham has suffered a significant data breach, with student and alumni records accessed by unauthorized parties. Find out the details and the university's response.

The University of Nottingham has confirmed a data breach after hackers gained access to its student record system. The incident, which has affected both current students and alumni, has raised serious concerns about data security and privacy.

The breach was carried out by the notorious ShinyHunters hacker collective, which leaked gigabytes of files stolen from the university’s systems.

The compromised data includes financial informationpersonal detailsand academic records of approximately 455,000 unique email addresses.

The Scope of the Breach

The leaked files contain a wide range of sensitive information, including names, addresses, phone numbers, passport numbers, genders, ethnicity details, disabilities, academic enrolment, citizenship status, and fee payments.

The university has acknowledged that the breach impacts a significant portion of its community.

In response to the incident, the University of Nottingham has taken several steps to mitigate the damage. The affected systems were immediately taken offline to contain the incident, and a comprehensive investigation was launched.

The university has also contacted those directly impacted and is working closely with Action Fraudthe Information Commissioner’s Officeand other regulatory bodies.

The University’s Response and Support

The university has established a dedicated support line at 0115 74 86500 for affected individuals and is encouraging everyone to keep checking their university email addresses for further updates. The institution has expressed its apologies for any anxiety caused by the incident and is committed to providing regular updates as the situation develops.

While the investigation continues, the university is operating on the precautionary assumption that four categories of information have been accessed: contact information, university-related details, financial information, and personal information including National Insurance numbers and protected characteristics. The university is working to verify the exact scope of the data accessed and will provide further updates as the investigation confirms these details.

The Broader Impact

The cyberattack comes at a challenging time for the University of Nottingham, which recently announced plans to cut 609 of its 7,363 full-time equivalent roles over the next three years due to financial challenges. The staff has responded with a boycott of marking and assessments, which could potentially block the university from handing out graduation certificates.

One affected student, Abigail Maguire, shared her concerns about the potential impact on her final degree grade. Maguire explained that her earlier grades were affected by personal challenges, including the loss of her brother and physical health problems. She expressed her fear that the university’s plans to use her earlier grades could override her recent achievements.

The Information Commissioner’s Office has confirmed that the University of Nottingham reported the incident and that they are assessing the information provided. The university’s proactive approach in addressing the breach and supporting affected individuals is crucial in managing the fallout from this serious incident.