Ransomware victim disclosure
← All victimsTaylor University
Claimed by Moneymessage · listed 3 years ago
Status timeline
- ListedSep 3, 2023
- Data leakeddate unknown
At a glance
- Group
- Moneymessage
- Status
- Data leaked
- Country
- United States
- Sector
- Education
- Listed on leak site
- Sep 3, 2023
About the victim
AI dossier — public-source company profileTaylor University is a private Christian liberal arts university located in Upland, Indiana. It offers undergraduate, graduate, and online programs across 100+ areas of study within a Christ-centered academic environment. The university serves pre-collegiate, undergraduate, and adult learners in graduate and professional programs.
- Industry
- Christian Liberal Arts Higher Education
- Address
- Upland, Indiana, United States
- Employees
- 501-1000
- Founded
- 1846
Attack summary
Severity: high — Data is reported as published by the group against an educational institution, which would likely include PII of students, staff, and potentially minors (pre-collegiate programs), financial records, and academic data at meaningful scale; no ransom amount or file size was provided but the disclosed status is data_published indicating confirmed exfiltration.The Moneymessage ransomware group claims to have attacked Taylor University with the disclosure status listed as data_published; no specific details about encryption, exfiltration scope, or data types were captured in the leak post.
Data the group says was taken
AI dossier — extracted from the leak post- Student records
- Faculty and staff personal information
- Financial aid and scholarship data
- Admissions records
- Academic records
- Alumni and donor information
Sources
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

