Ethical Hacking News
Dartmouth College has confirmed a data breach after the Clop extortion gang leaked sensitive information allegedly stolen from the school's Oracle E-Business Suite servers on its dark web leak site. The incident is part of a larger extortion campaign in which the Clop ransomware gang has exploited a zero-day flaw to steal sensitive files from many victims' Oracle EBS platforms.
Dartmouth College has confirmed a data breach due to the Clop extortion gang's leak of sensitive information from its Oracle E-Business Suite servers.The breach affected 1,494 individuals, but the total number of people potentially impacted is likely much larger.Sensitive files containing personal and financial information were stolen during the breach, including names, Social Security numbers, and financial account details.The Clop ransomware gang has been involved in several high-profile extortion campaigns targeting organizations across various industries.Dartmouth College is not an isolated incident; other organizations such as Logitech, GlobalLogic, and American Airlines subsidiary Envoy Air have also fallen victim to the Clop gang's attacks.The U.S. Department of State offers a $10 million reward for information tying the gang's attacks to a foreign government.Organizations must take proactive measures to protect themselves against future cyber threats, such as using robust security software and regular system updates.
Dartmouth College has confirmed a data breach after the Clop extortion gang leaked sensitive information allegedly stolen from the school's Oracle E-Business Suite servers on its dark web leak site. The incident is part of a larger extortion campaign in which the Clop ransomware gang has exploited a zero-day flaw to steal sensitive files from many victims' Oracle EBS platforms.
The breach, which was reported by Dartmouth College in a breach notification letter filed with the office of Maine's Attorney General, affected 1,494 individuals. However, the total number of people potentially impacted by this data breach is likely much larger, given that the school is headquartered in Hanover, New Hampshire, and it hasn't yet filed a breach notice with the state's Attorney General.
In a letter mailed to those affected by the data leak, Dartmouth College stated that an unauthorized actor took certain files between August 9, 2025, and August 12, 2025. The college added that through an investigation, they determined that one or more of these files contained personal information belonging to the impacted individuals, including their names and Social Security numbers.
Furthermore, documents containing financial account information of impacted individuals were also stolen by the Clop gang during the breach.
The incident is not an isolated one, as the Clop ransomware gang has been involved in several high-profile extortion campaigns targeting organizations across various industries. In recent weeks, Ivy League schools such as Harvard University and Princeton University have also been targeted by voice phishing attacks, with stolen personal information being leaked online.
In addition to Dartmouth College, other organizations that have fallen victim to the Clop ransomware gang's extortion campaign include Logitech, GlobalLogic, and American Airlines subsidiary Envoy Air. The stolen data from these organizations has also been leaked on the dark web and is now available for download via Torrent.
The U.S. Department of State has offered a $10 million reward for information tying the gang's attacks to a foreign government. In the past, Clop has also been behind several high-profile data theft attacks targeting various organizations, including Accellion FTA, GoAnywhere MFT, Cleo, and MOVEit Transfer.
In light of this incident, it is essential for individuals and organizations to exercise extreme caution when dealing with sensitive information and to take proactive measures to protect themselves against future cyber threats. The use of robust security software and regular system updates can help prevent data breaches like the one experienced by Dartmouth College.
Related Information:
https://www.ethicalhackingnews.com/articles/Dartmouth-College-Data-Breach-Clop-Extortion-Gang-Strikes-Again-ehn.shtml
https://www.bleepingcomputer.com/news/security/dartmouth-college-confirms-data-breach-after-clop-extortion-attack/
https://botcrawl.com/dartmouth-data-breach/
https://en.wikipedia.org/wiki/Clop_(hacker_group)
https://www.sentinelone.com/anthology/clop/
Published: Tue Nov 25 05:46:44 2025 by llama3.2 3B Q4_K_M
