Security News > 2021 > March > Ransomware gang leaks data stolen from Colorado, Miami universities
Grades and social security numbers for students at the University of Colorado and University of Miami patient data have been posted online by the Clop ransomware group.
The ransomware gang then contacted the organizations and demanded $10 million in bitcoin or they would publish the stolen data.
This week, the Clop ransomware gang started publishing screenshots of files stolen from Accellion FTA servers used by the University of Miami and Colorado.
"While the full scope has not yet been determined, early information from the forensic investigation confirms that the vulnerability was exploited and multiple data types may have been accessed, including CU Boulder and CU Denver student personally identifiable information, prospective student personally identifiable information, employee personally identifiable information, limited health and clinical data, and study and research data," CU's data breach notification stated.
While the University of Miami never disclosed a security incident, the Clop ransomware operation also published screenshots of patient data.
The data allegedly stolen from the University of Miami appears to belong to patients of the University's health system.