The University of Pennsylvania suffered a cybersecurity incident on Friday, where students and alumni received a series of offensive emails from various University email addresses, claiming that data was stolen in a breach.
The emails have a subject line of "We got hacked (Action Required)" and claim that data was stolen during an alleged breach, also calling out the University over its security practices and admission policies.
"The University of Pennsylvania is a dog**** elitist institution full of woke retards. We have terrible security practices and are completely unmeritocratic," reads the email seen by BleepingComputer.
"We hire and admit morons because we love legacies, donors, and unqualified affirmative action admits. We love breaking federal laws like FERPA (all your data will be leaked) and Supreme Court rulings like SFFA."
The emails were sent from various Penn email addresses, including the Penn Graduate School of Education ([email protected]) and University of Pennsylvania employees.
Email message from sent to students and alumni
Source: BleepingComputer
BleepingComputer has obtained numerous samples of the emails and can confirm they were all sent via "connect.upenn.edu," a Penn mailing list platform hosted on Salesforce Marketing Cloud. It is unclear if the University's account on the marketing platform was comprommised to send the emails.
A Penn spokesperson confirmed to BleepingComputer that they are aware of the emails and their Incident Response team is addressing the breach.
"A fraudulent email has been circulated that appears to come from the University of Pennsylvania's Graduate School of Education," a Penn spokesperson told BleepingComputer.
... continue reading