University Of Colorado Refuses To Pay $17 Million Ransom Following Accellion Data Breach

BOULDER, Colo. (CBS4) – The College of Colorado declined to pay a $17 million ransom demand after a knowledge breach compromised greater than 310,000 college data. Officers say the breach uncovered some college students’ grades and transcript knowledge, visa and incapacity standing, medical and prescription data and fewer than 20 Social Safety numbers.

(credit score: CBS) The assault focused a vulnerability within the File Switch Equipment from Accellion, a third-party vendor. CU Boulder was notified of the information breach on Jan. 25. The college’s Workplace of Data Safety decided information uploaded by 447 CU customers had been susceptible to unauthorized entry. READ MORE: 310,000 Records Compromised In University Of Colorado Data Breach, Including Social Security Numbers & University Financial Information In March, CBS4 reported the ransomware group CL0P started regularly leaking knowledge from greater than two dozen Accellion hacks on the darkish net, together with knowledge from CU. Officers mentioned some workers who use the file switch service acquired emails that their private knowledge had been stolen and could be revealed if the college didn’t pay the ransom.

(credit score: CBS) “We did obtain calls for that we declined to satisfy,” mentioned Ken McConnellogue, CU Vice President for Communication. “We additionally suggested our customers to not pay, which is in step with the steerage we acquired from the FBI.”

McConnellogue mentioned the demand was later lowered to $5 million and the college doesn't intend to pay.

 » Read more from