Utrecht University

Utrecht University suffered a ransomware attack incident that affected 140,000 people personal details.

The attack compromised the username, gender, date of birth, nationality and contact details: email address, phone number, postal address, language, information about event attendance and donation behaviour.

Bank account numbers and passwords were encrypted, making them inaccessible to hackers.

They investigated the incident and notified the affected members and restored the data.

Source: https://www.uu.nl/en/news/data-security-incident-at-supplier-blackbaud

TPRM report: https://www.rankiteo.com/company/universiteit-utrecht

"id": "utr01917622",
"linkid": "universiteit-utrecht",
"type": "Ransomware",
"date": "6/2017",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'customers_affected': 140000,
                        'industry': 'Education',
                        'location': 'Utrecht, Netherlands',
                        'name': 'Utrecht University',
                        'type': 'Educational Institution'}],
 'data_breach': {'data_encryption': ['bank account numbers', 'passwords'],
                 'number_of_records_exposed': 140000,
                 'personally_identifiable_information': ['username',
                                                         'gender',
                                                         'date of birth',
                                                         'nationality',
                                                         'email address',
                                                         'phone number',
                                                         'postal address',
                                                         'language',
                                                         'information about '
                                                         'event attendance',
                                                         'donation behaviour'],
                 'type_of_data_compromised': ['personal details']},
 'description': 'Utrecht University suffered a ransomware attack incident that '
                'affected 140,000 people personal details. The attack '
                'compromised the username, gender, date of birth, nationality '
                'and contact details: email address, phone number, postal '
                'address, language, information about event attendance and '
                'donation behaviour. Bank account numbers and passwords were '
                'encrypted, making them inaccessible to hackers. They '
                'investigated the incident and notified the affected members '
                'and restored the data.',
 'impact': {'data_compromised': ['username',
                                 'gender',
                                 'date of birth',
                                 'nationality',
                                 'email address',
                                 'phone number',
                                 'postal address',
                                 'language',
                                 'information about event attendance',
                                 'donation behaviour']},
 'ransomware': {'data_encryption': ['bank account numbers', 'passwords']},
 'response': {'communication_strategy': ['notified the affected members',
                                         'restored the data']},
 'title': 'Utrecht University Ransomware Attack',
 'type': 'Ransomware Attack'}

Utrecht University

Asahi Group Holdings

Crisis24 (OnSolve CodeRED)

OnSolve (Crisis24)