Hackers outsmart Oxford Uni career progression platform student data potentially compromised

Date:
Mon, 08 Jun 2026 09:11:30 +0000

Description:
A bug in a third-party system was leveraged to steal emails on a yet undisclosed number of people.

FULL STORY ======================================================================Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter Oxfords CareerConnect platform breached via GTI vulnerability Names, emails, and some encrypted passwords exposed Alumni and employers forced to reset passwords; phishing risk
expected Hackers recently broke into a careers platform used by Oxford University and stole users contact information.

The platform is called CareerConnect, it is a central hub where students, graduates, employers, and career advisers can find things like job listings and employer profiles. It is developed by a company called GTI, on a technology called targetconnect. In a press release published last week on
the Oxford University Careers Service website, it was said that in the last days of May, an unauthorized third party used a security vulnerability to access users first names, last names, and email addresses. For users who do not sign in using the Single Sign-On (SSO) feature, encrypted passwords were stolen as well. Latest Videos From Watch full video here: Passwords invalidated Students use their SSO to sign in to CareerConnect which means their passwords are not affected, the announcement reads. Only names and e-mail addresses would have been acquired in the breach.

GTI said that alumni, research staff, and employers, were using CareerConnect with a password set locally, and since these were most likely compromised,
GTI invalidated them. These users will be asked to set a new password on
their next login. You may like Top universities among victims named in Canvas data breach Hackers target LinkedIn accounts with devious new phishing attack Canvas maker Instructure reveals data breach confirms user personal information leaked

There is no evidence that course information, uploaded files, appointment information, or financial information were involved in this incident, the announcement further reads. GTI has stated this breach appeared to be focused on gathering credentials which may lead to phishing attempts.

The breach happened in the third-party system, Oxford said, stressing that there is no evidence of compromise to University systems. Students passwords, as well as financial information, are most likely not affected. Are you a
pro? Subscribe to our newsletter Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed! Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting
your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

The identity of the attackers, or the number of victims, have not been disclosed. We dont know if the crooks attempted to extort the university. GTI has since confirmed that the bug was fixed, and that additional security measures have been introduced to prevent similar occurrences in the future.

Via The Register The best antivirus for all budgets Our top picks, based on real-world testing and comparisons

Read our full guide to the best antivirus 1. Best overall: Bitdefender Total Security 2. Best for families: Norton 360 with LifeLock 3. Best for mobile: McAfee Mobile Security Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.



======================================================================
Link to news story: https://www.techradar.com/pro/security/hackers-outsmart-oxford-uni-career-prog ression-platform-student-data-potentially-compromised


--- Mystic BBS v1.12 A49 (Linux/64)
* Origin: tqwNet Technology News (1337:1/100)