Cyber Incident Victim: AcadeME

On or around June 20, 2021, AcadeME, an Israeli company providing student recruitment services to colleges and universities, suffered a cyberattack resulting in the exposure of personal details belonging to approximately 280,000 students. The Malaysia-based hacker group DragonForce, identifying itself as pro-Palestinian, publicly claimed responsibility for the breach through a Telegram message on June 20, declaring they had compromised "THE LARGEST AND MOST ADVANCED STUDENT AND GRADUATE RECRUITMENT NETWORK IN ISRAEL." AcadeME's platform facilitated connections between students and thousands of employers across Israel, handling sensitive personal data as part of its core operations. The attackers exfiltrated student records at scale, though the article does not specify the exact data types compromised beyond "details." No technical details regarding the attack vector, intrusion timeline, or AcadeME's internal detection mechanisms were disclosed in the source material.

The breach impacted a substantial portion of Israel’s student population, given AcadeME’s role in serving "hundreds of thousands of students" nationwide. Leaked information could potentially include identifiers critical to academic and professional trajectories, though the absence of explicit confirmation precludes definitive categorization. DragonForce’s geopolitical alignment, emphasized in their claim, suggests a motivation extending beyond financial gain to symbolic targeting of Israeli institutions. No statements from AcadeME, affected educational institutions, or law enforcement regarding containment, remediation, or victim notifications were reported in the cited article. The incident underscored risks to third-party educational service providers managing large volumes of student data, with compromised records exposing individuals to identity theft, phishing, and reputational harm. Long-term consequences for students’ privacy and academic affiliations remained unquantified in available reporting.