University of Nottingham Confirms Breach After Hackers Leak Data
Security WeekArchived Jun 11, 2026✓ Full text saved
The ShinyHunters hacker group has taken credit for the attack, leaking more than 450,000 email addresses and other information. The post University of Nottingham Confirms Breach After Hackers Leak Data appeared first on SecurityWeek .
Full text archived locally
✦ AI Summary· Claude Sonnet
The University of Nottingham in the UK has confirmed suffering a data breach after the notorious ShinyHunters hacker collective leaked files stolen from the university’s systems.
The University of Nottingham is a major research university in the UK, ranked among the world’s top 100 institutions and home to more than 35,000 students on its UK campuses, plus thousands more at its international branches in China and Malaysia.
The ShinyHunters group listed the organization on its leak website and published gigabytes of files allegedly stolen from its systems. The hackers claimed to have obtained financial information pertaining to all of the university’s campuses.
University of Nottingham hacked by ShinyHunters
An analysis of the leaked files by the account breach notification service Have I Been Pwned showed that they contain roughly 455,000 unique email addresses, along with other types of personal information such as usernames, names, addresses, phone numbers, passport numbers, genders, and details on ethnicity, disabilities, academic enrolment, citizenship status, and fee payments.
In a statement issued on Wednesday, the University of Nottingham confirmed that hackers accessed “a significant amount of data” in its student record system.
The university says the data breach impacts current students and alumni.
“We are working to understand the data that has been accessed and have contacted those students and alumni affected directly. We are working closely with Action Fraud, the Information Commissioner’s Office, and other regulatory bodies,” the organization said.
Related: Canvas System Is Online After a Cyberattack Disrupted Thousands of Schools
Related: 1.2 Million Affected by University of Hawaii Cancer Center Data Breach
Related: 3.5 Million Affected by University of Phoenix Data Breach
Related: University of Sydney Data Breach Affects 27,000 Individuals
WRITTEN BY
Eduard Kovacs
Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.
More from Eduard Kovacs
Critical HVAC and UPS Vulnerabilities Could Let Hackers Disrupt Data Centers
ServiceNow Patches Vulnerability Exploited Against Some Customers
ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact
Microsoft Patches 200 Vulnerabilities
Adobe Patches 123 Vulnerabilities
Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails
OpenSSL Patches High-Severity Vulnerability Found With AI
Google Patches 5th Chrome Zero-Day Exploited in 2026
Latest News
Hackers Exploit Langflow Vulnerability for Remote Code Execution
Siemens Says Desigo CC Files Flagged as Malware by Security Engines
FBI Seizes 13 Websites That Officials Say Were Used by China to Target and Recruit US Workers
Splunk, Palo Alto Networks Patch Severe Vulnerabilities
‘GreatXML’ Zero-Day Exploit Bypasses BitLocker
Microsoft Patches Exploited Exchange Server Vulnerability
Infostealers Turn Millions of Devices Into Credential Theft Machines
Cyera Raises $600 Million at $12 Billion Valuation
Trending
Webinar: Third-Party Risk In Practice
June 4, 2026
Organizations are investing heavily in third-party risk management, but breaches, delays, and blind spots continue to persist. Join this live webinar as we examine the gap between how organizations think their third-party risk programs are performing and what’s actually happening in practice.
Register
Virtual Roundtable: CISO Forum 2026 Mid-Year Review
June 10, 2026
Explore how attackers are using AI to scale threats and how security teams can respond with AI-driven defenses. Protecting against unmonitored use of generative AI (Shadow AI) in business units and building and enforcing AI governance frameworks.
Register
People on the Move
Barbara Massa has joined Armadin as Chief Operating Officer.
John Walton has been appointed Chief Information Security Officer at Nubank.
Reco has appointed Zoe Hillenmeyer as Chief Operating Officer.
More People On The Move
Expert Insights
After AI Reaches Production: 12 Ways Security Teams Can Take Control
Security teams need more than visibility into AI applications, they need a repeatable framework for monitoring, investigating, and defending them in production. (Joshua Goldfarb)
Everybody Is Vibe Coding But Nobody Told The Security Team
AI-driven development is not something organizations can or should block. But it must be governed. (Danelle Au)
The Zero-Knowledge Threat Actor And The End Of Responsible Disclosure
AI can help attackers generate malware, create malicious payloads, bypass simple security checks, and convert vague malicious intent into functional code. (Etay Maor)
Raising The Cybersecurity Stakes: Ante Up For The Agentic Era
CISOs are now facing machine-speed attacks and asking, “How do I agent?” The industry must provide remediation at scale. (Nadir Izrael)
Caught Off Guard: Securing AI After It Hits Production
As enterprises rush AI projects into production, security teams are increasingly being forced into reactive mode. (Joshua Goldfarb)
Flipboard
Reddit
Whatsapp
Email