North Carolina-based Guilford College has confirmed having sensitive student, faculty, and staff data stolen in a ransomware attack last month by the Hive ransomware gang, which posted a sample of the stolen data on Friday, reports The Record, a news site by cybersecurity firm Recorded Future.
Investigation into the incident continues but law enforcement and individuals who may have been impacted by the ransomware attack have already been notified.
"...[W]e are working around the clock to determine what sensitive data was accessed, and we will directly notify any individuals we believe may have been affected," said a Guilford College spokesperson, who also noted that the college has been aware of Hive's post.
Guilford College joins Cincinnati State College and Virginia-based Centura College among U.S. colleges that have been posted to ransomware leak sites during the Thanksgiving weekend.
Meanwhile, Hive ransomware's admission of compromising the North Carolina college comes weeks after the FBI, Cybersecurity and Infrastructure Security Agency, and Department of Health and Human Services warned about the group's increased activity.
SiliconAngle reports that ransomware attacks against the educational sector have significantly increased from 2018 to 2022 and are expected to reach a record high this year, with 85 attacks recorded during the first half of 2023 being almost two times higher than the same period in 2022.
Air Canada has confirmed being impacted by a data breach that compromised some of its employees' limited personal data and other records, reports The Record, a news site by cybersecurity firm Recorded Future.