Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
Threat actors have claimed a cyber attack on an Australian private education institution, claiming to have stolen personal and business data.
The Kill Security (KillSec) ransomware gang listed the Albright Institute of Language and Business on its dark web blog this week.
Albright Institute is a registered training organisation (RTO) that provides training in the English language and offers diplomas and other qualifications in business, giving students the step up to begin study at Australian universities.
While KillSec has not set a ransom payment, it says it will publish the data in less than six days at the time of writing.
Additionally, it posted a data sample containing passport scans, study offer letters, payment plan documents, visa application documents and more, including a document containing lists of personal data.
Data includes student name, school ID, school email, personal email, mobile number, qualifications, unit, assessment and assessment status, deadlines, results, and more.
Cyber Daily has reached out to the Albright Institute for more information and is awaiting a response.
Just last year, KillSec claimed a cyber attack on another Australian educational platform, Thanks For the Help (TFTH).
TFTH is an educational support platform that assists university and college students with assessments, helps find student accommodation and more.
It is also worth noting that the company’s website has been flagged by the Australian government’s Tertiary Education Quality and Standards Agency for providing essay writing services.
“Access to this website has been blocked because it has been found to facilitate a contravention of a section of the provisions of the Tertiary Education Quality and Standards Agency Act 2011 (TEQSA Act) regulating academic cheating services,” said the agency.
Now, adding to the company’s woes, the KillSec ransomware gang has claimed a ransomware attack on TFTH.
The company provided very little information as to the nature of the incident, but it is alleging that it will leak exfiltrated data after eight days at the time of writing.
“1 per cent of data is [already published],” said KillSec.
If the countdown times out, KillSec said it will publish “all data”. It has not yet publicly disclosed the ransom cost.
It is currently unclear what data, if any, has actually been exfiltrated. TFTH is yet to publish a statement.
Be the first to hear the latest developments in the cyber industry.
