Threat Actor: BitBanish | BitBanish
Victim: La Salle University | La Salle University
Price: Not disclosed
Exfiltrated Data Type: Personal and academic information
Key Points :
- On July 18, 2024, La Salle University in Ozamiz, Philippines, suffered a data breach affecting over 92,000 records.
- The breach involved the university’s Registrar System, compromising sensitive personal and academic details.
- Exposed data includes student IDs, full names, contact information, and other personal identifiers.
- Other affected databases include those for contact tracing, appointments, and educational grants.
- The breach raises concerns about identity theft and phishing risks for the affected individuals.
- The cybercriminal group BitBanish is responsible for the attack, prompting an investigation by Deep Web Konek.
- The university has not yet issued an official statement regarding the breach or protective measures.
Manila, Philippines – On July 18, 2024, La Salle University in Ozamiz, Philippines, experienced a significant data breach. More than 92,000 rows of students and other information were exposed when threat actors from the group BitBanish infiltrated the university’s Registrar System.
The compromised data includes personal and academic details such as student IDs, pictures, full names, course information, ID numbers, record numbers, graduation years, remarks, folder IDs, statuses, contact numbers, email addresses, SO numbers and series, NSTP serials, dates of birth, cities, provinces, parents’ information, addresses, nationalities, genders, and civil statuses.
In addition to the Registrar System, several other databases were also affected. These include databases for contact tracing, courier services, appointments, bookings, learning modes, national service information, survival data, educational grants, and queuing systems.
The breach has raised serious concerns about privacy and security. The exposed information could be used for identity theft, phishing, and other malicious activities. The university has not yet released an official statement about the breach or what steps they are taking to protect the affected individuals.
The threat actor behind this attack is the cybercriminal group BitBanish. Deep Web Konek started its initial investigation to understand the full impact of the breach and to improve security measures to prevent future incidents.