How did Feng Chia University discover the ransomware attack?

The university became aware of the security breach on Tuesday, June 18, 2025, after receiving outside intelligence alerts about the targeting. After nearly 24 hours, the institution confirmed both the cause and scope of the cyberattack with assistance from external cybersecurity experts.

Who was responsible for the Feng Chia University attack?

The attack was orchestrated by the NOVA cybercriminal organization using NOVA ransomware. The group claims the breach was carried out by 'Chinese APTNova Affiliates,' though this designation has sparked speculation about potential state-sponsored involvement.

What is NOVA ransomware?

NOVA ransomware is a relatively new cybercriminal toolkit that first emerged in March 2025. It was deployed in this attack against Feng Chia University's systems.

Is there evidence of state-sponsored involvement in this attack?

While NOVA claims the breach was carried out by 'Chinese APTNova Affiliates,' this designation has sparked speculation about potential state-sponsored attack. However, groups with nation-state backing typically don't advertise their governmental connections, making the true nature of any state involvement unclear.

What data do the attackers claim to have stolen?

The threat actors claim to have stolen approximately 10 gigabytes of data. According to NOVA's dark web postings, the compromised information allegedly includes source code from university systems, employee personal information, student payment records and financial data, and database structures and technical documentation.

How much data was allegedly stolen from Feng Chia University?

The threat actors claim to have stolen approximately 10 gigabytes of data from Feng Chia University's systems, though the university disputes some of the specific claims about what data was actually compromised.

What response actions did Feng Chia University take?

The university initiated emergency response protocols and launched an investigation with the assistance of external cybersecurity experts. They were able to confirm both the cause and scope of the cyberattack within nearly 24 hours of discovery.

How many individuals were affected by this breach?

The number of affected individuals has not been disclosed by Feng Chia University. Given the dispute over what data was actually compromised, the university may still be assessing the true scope of impact.

What should students and staff know about this incident?

While the university disputes key aspects of the attackers' claims, particularly regarding employee data and student payment records, the community should remain vigilant. The university continues normal operations and is working with cybersecurity experts to investigate the full scope of the incident.

Incident

Feng Chia University hit by NOVA ransomware gang

Q: What happened to Feng Chia University?

Feng Chia University is reporting a ransomware attack orchestrated by the NOVA cybercriminal organization. The university became aware of the security breach on Tuesday, June 18, 2025, after receiving outside intelligence alerts about the targeting.

Q: Has the attack disrupted university operations?

No, Feng Chia University continues to operate normally, with no reported disruption to academic activities or student services despite the ransomware attack.

published: June 20, 2025

Learn More

Feng Chia University, is reporting a ransomware attack orchestrated by the NOVA cybercriminal organization.

The university became aware of the security breach on Tuesday, June 18, 2025, after receiving outside intelligence alerts about the targeting. The University initiated emergency response protocols and lanuched an investigation with the assistance of external cybersecurity experts. After nearly 24 hoursthe institution confirmed both the cause and scope of the cyberattack.

The attack deployed NOVA ransomware, a relatively new cybercriminal toolkit that first emerged in March 2025.

NOVA's has released claims the Feng Chia University breach was carried out by "Chinese APTNova Affiliates." This designation has sparked speculation about potential state-sponsored attack but groups with nation-state backing don't advertise their governmental connections.

The threat actors claim to have stolen approximately 10 gigabytes of data. According to NOVA's dark web postings, the compromised information allegedly includes:

Source code from university systems
Employee personal information
Student payment records and financial data
Database structures and technical documentation

The number of affected individuals is not disclosed.

Feng Chia University has publicly disputed the hacker's claims, denying the compromise of employee data and student payment records. The institution continues to operate normally, with no reported disruption to academic activities or student services.

Feng Chia University hit by NOVA ransomware gang

Read More
Town of Cornelius preventively shuts down city services …
AlphV/Black Cat crime group extorting fintech Tipalti, threatening …
Auckland Transport suspected ramsomware attack
Simpson Manufacturing stops production due to cyberattack
Octapharma Plasma closes 150+ donation centers, declaring "network …