Ransomware actors (shinyhunters) targeted moody.edu in the US, compromising over 23GB of data across enrollment, donor relations, payroll, and communications systems, including 46 million communication records, 2.2 million enrollment lead records, and extensive biodemographic, donor gift, payroll, admissions outreach, and housing data. This is a final deadline warning to contact the attackers by 18 June 2026 to avoid leakage and associated disruptions. #UnitedStates
Incident Details
- Victim: moody.edu
- Sector: Education
- Country: US
- Actor: shinyhunters
- Source:
- Discovered: 2026-06-15T19:28:21.622452+00:00
- Published: 2026-06-15T19:28:20.053789+00:00
Information
- Over 23 gigabytes of data, spanning more than 1,300 files and tens of millions of records, was compromised across enrollment, donor relations, payroll, and communications systems.
- The exposed material includes 46 million communication records, 2.2 million enrollment lead records, 108,000 biodemographic master files with addresses and birthdates, and 3.3 gigabytes of donor gift data.
- Employee payroll XML files containing home addresses and earnings, along with more than 1,100 admissions outreach files and student housing assignment records, were also taken.
- The actor issued a final warning to make contact by 18 June 2026 to avoid publication of the stolen data.
- The warning states that failure to comply may result in the leak of the information and additional digital disruption.
Disclaimer: This post is based on public claims made by the ransomware group "shinyhunters". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.