Ethical Hacking News
A devastating ransomware attack hit the University of Hawaii Cancer Center in August 2025, compromising sensitive data from research participants, including documents with Social Security numbers dating back to the 1990s. The attack resulted in the theft of sensitive personal information and highlights the need for robust cybersecurity measures and vigilance in detecting potential threats.
The University of Hawaii Cancer Center was hit by a sophisticated ransomware attack, compromising sensitive data from research participants. The attack occurred on August 31st and affected a single research project at the UH Cancer Center. The breach involved documents containing Social Security numbers dating back to the 1990s. The university took immediate action to disconnect affected systems, engage external cybersecurity experts, and notify relevant stakeholders. Measures have been taken to secure systems against further breach attempts, including installing endpoint protection software and conducting third-party security audits.
The University of Hawaii Cancer Center has been hit by a sophisticated ransomware attack, compromising sensitive data from research participants, including documents containing Social Security numbers dating back to the 1990s. The attack occurred on August 31st, and the university took immediate action to disconnect affected systems, engage external cybersecurity experts, and notify relevant stakeholders.
According to a report submitted to the state legislature, the University of Hawaii (UH) System is comprised of three universities, seven community colleges, ten campuses, and various training and research centers across the Hawaiian Islands. Its Cancer Center, located in Honolulu's Kakaʻako district, has over 300 faculty and staff members, as well as an additional 200 affiliate members. The attack specifically targeted a single research project at the UH Cancer Center, without affecting clinical operations or patient care.
In an effort to mitigate the damage caused by encrypting compromised systems, UH disconnected affected systems upon discovery in late August. Experts were then engaged to conduct a comprehensive investigation into the attack's impact. During this process, UH made the difficult decision to engage with the threat actors in order to protect individuals whose information may have been affected.
A limited set of research files containing sensitive personal information was involved in the breach. These files included documents from the 1990s, featuring Social Security numbers used to identify research participants prior to the university's adoption of different identification methods.
The university has taken measures to secure its systems against further breach attempts. This includes installing endpoint protection software, replacing compromised systems, resetting passwords, and conducting third-party security audits of the Cancer Center.
In addition, several other institutions in the United States have recently disclosed cyberattacks affecting their systems. These include Hawaiian Airlines, which experienced disruptions to some IT systems but did not affect flight safety, as well as Princeton University, Harvard University, and the University of Pennsylvania, all of whom were targeted by voice phishing attacks that resulted in the theft of sensitive data from donors, staff, students, and alumni.
Furthermore, the Clop ransomware gang breached Harvard University and the University of Pennsylvania once again, stealing personal and financial information from students, staff, and suppliers. In another incident, Baker University disclosed a data breach after attackers compromised its network the previous year and stole the personal, health, and financial information of over 53,000 individuals.
The breach at the University of Hawaii Cancer Center highlights the growing threat posed by sophisticated ransomware attacks on institutions handling sensitive data. These incidents underscore the importance of robust cybersecurity measures and vigilance in detecting potential threats.
Related Information:
https://www.ethicalhackingnews.com/articles/University-of-Hawaii-Cancer-Center-Hit-by-Sophisticated-Ransomware-Attack-Exposing-Sensitive-Data-ehn.shtml
https://www.bleepingcomputer.com/news/security/university-of-hawaii-cancer-center-hit-by-ransomware-attack/
Published: Mon Jan 12 13:22:09 2026 by llama3.2 3B Q4_K_M
