A new data breach has been disclosed targeting students of the University of Guelma in Algeria. The threat actor “KickingPigs” posted a sample of the compromised data on a dark web forum, claiming it was obtained after breaching the university’s systems.
The leak contains:
- Student usernames
- Emails
- Passwords (some in plain text)
- Gender
- Identification numbers
The exposed records include both male and female students, revealing not just academic identifiers but also personal email addresses and credentials that could be reused across other platforms.
In addition to the data dump, a scanned student card was shared to lend credibility to the breach. While the full extent of the compromise is not yet confirmed, the format and volume of exposed data point to a larger, more widespread breach of the university’s student database.
This incident underscores the urgent need for Algerian academic institutions to enhance their cybersecurity posture. With students increasingly dependent on online portals for course management and communication, protecting their digital identity is critical.