Ransomware victim disclosure
← All victimsCity Lit
Claimed by Vicesociety · listed 4 years ago
Status timeline
- ListedJan 6, 2023
- Data leakeddate unknown
At a glance
- Group
- Vicesociety
- Status
- Data leaked
- Country
- United Kingdom
- Sector
- Education
- Listed on leak site
- Jan 6, 2023
About the victim
AI dossier — public-source company profileCity Lit is a specialist adult education college based in Covent Garden, London, offering a broad range of courses in arts, languages, humanities, sciences, and wellbeing to adult learners. It is one of the largest adult education colleges in the UK, delivering courses both in-person at its London campus and online. The institution is publicly funded and serves thousands of students annually.
- Industry
- Adult & Continuing Education
- Address
- Keeley Street, Covent Garden, London, WC2B 4BA, United Kingdom
- Employees
- 201-500
- Founded
- 1919
Attack summary
Severity: high — Vice Society is a known ransomware group with a pattern of exfiltrating sensitive education-sector data including student and staff PII; the disclosed status is 'data_published' confirming actual data release from a publicly funded educational institution holding regulated personal data at scale.Vice Society claims to have attacked City Lit and has published data (disclosed status: data_published), indicating exfiltration of organisational data; the leak post excerpt does not detail specific data categories or volume but the published status confirms data has been released.
Data the group says was taken
AI dossier — extracted from the leak post- Student records
- Staff personal data
- Administrative documents
- Financial records
What the group claims
Whether you are looking to kick-start a new career, delve into a favourite topic, keep active or bring some balance to a busy life, City Lit offer a huge range of courses.
Sources
- Victim sitecitylit.ac.uk/
Source
Indexed 4 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

