Ransomware group claims it stole data from Monmouth University

The PEAR (Pure Extraction and Ransom) cybercriminal group this month took credit for a ransomware attack against Monmouth University in New Jersey, claiming it made off with 16 terabytes the institution’s data.

University President Patrick Leahy emailed students last week about the attack, noting that cybersecurity experts and law enforcement officials had been recruited to investigate.

In a statement provided to the security website Comparitech, Leahy confirmed that an incident “resulted in unauthorized access to some information.”

Rebecca Moody, Comparitech’s head of data research, said 16 TB was “extensive,” 28 times greater than the average amount of data exfiltrated in similar attacks.

“It’s good to see that Monmouth has acted quickly and that people have already been warned of this potential breach,” Moody said in an emailed statement. “While we await further updates, students and employees should be on high alert for any potential phishing campaigns, especially those purporting to be from the university, and should monitor their accounts for any unauthorized activity.”

The PEAR group has claimed credit for 64 ransomware attacks, 13 of which have been confirmed by their victims. Six of those attacks were against educational institutions, including two community colleges.