A threat actor using the alias bxxxx1 has allegedly leaked a database from Edvantis.ma, a Moroccan private higher education group, on a dark web forum.
According to the post, the leaked data includes around 3,000 records containing personal information such as first names, second names, email addresses, and mobile numbers. The post included a description of Edvantis’ operations, highlighting its international academic partnerships and programs across engineering, management, design, and media.
While the scope of the leak appears limited to 3,000 records, the data could still be used in phishing, scams, or social engineering campaigns. Institutions like Edvantis hold critical identity data on young professionals and students, who caprime targets for credential theft and fraud.
This incident highlights growing threats to the education sector across Africa, particularly as institutions expand their digital footprints without matching cybersecurity investments.