Cyber Incident Victim: Universidad Piloto de Colombia

On October 21, 2022, Universidad Piloto de Colombia publicly disclosed a computer security incident via its official Facebook page. The announcement did not specify the nature or scope of the breach. Approximately one week later, on October 28, the ALPHV/BlackCat ransomware group listed the university on its data leak site, claiming possession of 300 gigabytes of stolen data. ALPHV asserted the compromised information included files pertaining to students, faculty members, and administrative operations. The group published sample documents to substantiate their claims, though the specific contents of these samples were not detailed in available reports. DataBreaches.net attempted to contact the university via email to verify ALPHV's assertions but received no response as of the article's publication date.

The incident exposed sensitive institutional and personal information based on ALPHV's claims regarding the data categories affected. No technical details about the attack vector, duration of network compromise, or encryption of systems were disclosed by either the university or the threat actors. Universidad Piloto de Colombia did not release follow-up statements beyond its initial Facebook notification, leaving the extent of operational disruption and data integrity impacts unconfirmed. The lack of public remediation updates or communication regarding potential notifications to affected individuals created uncertainty about the breach's consequences for the university community. ALPHV's inclusion of the institution on its leak site indicated unsuccessful ransom negotiations or refusal to pay, consistent with the group's typical extortion tactics against other victims.