Cyber Incident Victim: ProctorU

ProctorU, an online proctoring service used by educational institutions and companies to monitor exams, confirmed a data breach in August 2020 following the leak of its user database on a hacker forum. The breach occurred when a known data breach seller publicly released databases from 18 companies, including ProctorU, which contained approximately 444,000 user records. The leaked ProctorU database included email addresses, full names, physical addresses, phone numbers, hashed passwords, organizational affiliations, and other personal details. Samples analyzed by BleepingComputer revealed records spanning multiple years, with account creation dates ranging from 2012 to 2017. Notably, the compromised data involved users from prominent academic institutions such as UCLA, Harvard, Yale, Princeton, Columbia University, University of Texas, UC Davis, Syracuse University, and Northern Virginia Community College, along with email addresses belonging to U.S. military personnel.

The database leak exposed sensitive information that could facilitate targeted phishing attacks or identity theft, particularly given the inclusion of military-associated accounts and detailed personal identifiers. BleepingComputer verified the authenticity of the leaked data through forensic examination but received no response from ProctorU regarding additional breach details or mitigation efforts when contacted. The incident highlighted risks associated with long-term data retention, as records dated back nearly a decade prior to the breach. No technical specifics about the intrusion method, containment measures, or system vulnerabilities were disclosed by ProctorU beyond the initial breach confirmation. The exposure of hashed passwords raised concerns about potential credential-based attacks if weak hashing algorithms were employed, though the article did not specify the hashing methodology used.