Cyber Incident Victim: Coastal Carolina University

In early January 2015, Coastal Carolina University was named among multiple higher education institutions targeted in a hacking campaign attributed to an individual or group using the alias "@MarxistAttorney." The attacker publicly claimed responsibility on January 3, 2015, through a Pastebin post that listed Coastal Carolina alongside California State University, University of Kentucky, University of Connecticut, University of Maryland, Abertay University, and Fordham University. Proof-of-concept data dumps were provided for each institution, though specific details about Coastal Carolina's compromised records were not disclosed in public reporting. The hacker described obtaining "thousands upon thousands of logins, employee ids, and various other sensitive information" from the universities, stating the intrusions were motivated by amusement ("lulz") and a desire to expose perceived inadequacies in the victims' IT security teams.

DataBreaches.net contacted all affected institutions for verification on January 4, 2015. Coastal Carolina University did not publicly confirm or deny the breach despite multiple inquiries, unlike the University of Kentucky and University of Maryland, which acknowledged investigations into the claims. Abertay University clarified that compromised data originated from a separately hosted promotional site (daretobedigital.co.uk) rather than its primary systems. The hacker's operational methods remained unconfirmed, though analysis of data dumps revealed no prior public postings of Coastal Carolina's information. No federal agency investigation was noted, with the article highlighting jurisdictional limitations in education-sector breach responses. Coastal Carolina's specific remediation actions, data exposure scope, and final determination of breach validity were not disclosed in available documentation as of the last update on January 8, 2015.