When did the cyberattack occur?

The attack began with an initial breach between June 15-16, 2025, when cybercriminals gained unauthorized access to a server in Chennai. The attack escalated between June 24-25, 2025, with coordinated intrusions targeting servers in both Chennai and Dallas.

Which educational institutions were affected?

Scottish Church College was specifically mentioned as being affected, with its admission databases compromised. The attack also impacted admission databases for multiple other educational institutions, though their names have not been disclosed.

What student information was compromised in the breach?

The compromised data includes student names and contact information, college application details and status, admission database records for multiple institutions, financial transaction details related to admission fees, email communications between students and admission authorities, and database access credentials and system configuration data.

What damage was caused by the ransomware attack?

The coordinated attacks on June 24-25, 2025, resulted in the deletion of admission databases for multiple colleges, causing significant disruption to the admission process across several educational institutions. Students were also targeted with fraudulent payment scams.

How many students were affected by this breach?

The number of affected individuals has not been disclosed by Surya Shakti Infotech Pvt Ltd.

What should students do if they received suspicious payment instructions?

Students who received payment instructions for admission fees should verify the authenticity of any payment requests directly with their educational institutions through official channels before making any financial transfers. Do not trust payment instructions received via email or other digital communications without independent verification.

Are there any recovery efforts underway?

No specific details about recovery efforts have been disclosed by Surya Shakti Infotech Pvt Ltd beyond the initial emergency security measures that were implemented after the first breach was discovered.

Incident

Ransomware attack on college admission system exposes student data, scams applicants

Q: What response actions were taken after the attack?

Surya Shakti Infotech Pvt Ltd reported the breach to authorities and stated that emergency security measures were implemented after the first breach was discovered on June 15-16. However, these measures proved insufficient to prevent the subsequent attacks on June 24-25, 2025.

published: June 28, 2025

Learn More

Surya Shakti Infotech Pvt Ltd, a company that manages online college admission systems, has fallen victim to a ransomware attack that compromised student data and disrupted the entrance process for multiple educational institutions.

The attack began with an initial breach between June 15 and 16, 2025, when cybercriminals gained unauthorized access to a server hosted in Chennai that contained admission databases for Scottish Church College and potentially other educational institutions.

The breach allowed the attackers to access sensitive student information and admission system credentials. The attackers used their access to send fraudulent payment instructions to undergraduate candidates who had applied for admission to Scottish Church College. The cybercriminals provided false bank account details and instructed students to transfer so-called admission fees to accounts controlled by the attackers.

The attack escalated between June 24 and 25, 2025, when the cybercriminals launched coordinated intrusions targeting servers in both Chennai and Dallas. These subsequent attacks resulted in the deletion of admission databases for multiple colleges, causing disruption to the admission process across several educational institutions.

The compromised data includes

Student names and contact information
College application details and status
Admission database records for multiple institutions
Financial transaction details related to admission fees
Email communications between students and admission authorities
Database access credentials and system configuration data

The number of affected individuals is not disclosed.

Surya Shakti Infotech Pvt Ltd reported the breach to the authorities. The company stated that emergency security measures were implemented after the first breach was discovered, but these measures proved insufficient to prevent the subsequent attacks on June 24 and 25.

No other recovery effort details are disclosed.

Ransomware attack on college admission system exposes student data, scams applicants

Read More
Ontario hospitals attacked by ransomware, patient and employee …
LockBit gang claims attack and data theft from …
Let the bickering begin: Second hacker team claims …
Watsonville Community Hospital employees report identity theft following …
Andy Frain reports ransomware attack and data breach …