The University of Manchester, a prominent UK institution, has disclosed that it experienced a cyber incident in which hackers gained unauthorized access to its systems and likely copied data. The university expressed apologies for the concern caused and stated that its internal team, along with external support, is still determining the extent of the breach.
While the specific data accessed has not yet been established, the university assured students that it would provide updates as more information becomes available.
In response to the incident, the university has advised its 40,000 students to remain vigilant for phishing emails, as well as its 12,000 staff members, whose data may also be affected.
Although the university did not classify the incident as a ransomware attack, it is actively investigating the perpetrators in collaboration with authorities.
The motive behind the breach remains unclear, whether it was an attempt to hold the institution to ransom or an effort to obtain sensitive research materials. The University of Manchester had launched a “Highly Restricted Data Service” earlier in the year to safeguard commercially sensitive and restricted data used by researchers, but it is unknown if this data was compromised in the breach.
The university promptly reported the incident to various authorities, including the Information Commissioner’s Office, the Office for Students, the National Cyber Security Centre, and the National Crime Agency, and affirmed its commitment to working closely with all parties involved to address the situation effectively.