Ransomware victim disclosure
← All victimsUniversity of Valencia
Claimed by nova · listed 6 hours ago
Status timeline
- Listed
May 23, 2026
- Data leaked
At a glance
About the victim
AI dossier — public-source company profileThe University of Valencia is one of Spain's oldest and leading academic institutions, founded in 1499 and located in Valencia, Spain. It currently enrolls approximately 55,000 students and offers courses primarily in Spanish, with increasing offerings in Valencian and English.
- Industry
- Higher Education
- Address
- Valencia, Spain
- Founded
- 1499
Attack summary
Severity: high — Confirmed exfiltration of personal data including photographs of minors and students, which constitutes sensitive PII at scale affecting a large institution with 55,000 students. Data involving children elevates severity despite lack of published proof samples.Nova claims to have exfiltrated sensitive personal data including photographs of students and children, as well as staff information. The group characterizes the data as embarrassing and sensitive, and is soliciting contact for ransom negotiation.
Data the group says was taken
AI dossier — extracted from the leak post- personal photographs of students
- personal photographs of children
- staff personal data
What the group claims
University of Valencia is a university located in the Spanish city of Valencia. It is one of the oldest surviving universities in Spain, and the oldest in the Valencian Community, and is regarded as one of Spain's leading academic institutions. The University was founded in 1499, and currently has around 55,000 students. Most of the courses are given through the medium of Spanish, but the university has promised to increase the amount of courses available in Valencian. Moreover, in some degrees part of the teaching is in English - we don't know why you save personal kids photos and students on the server, the data is very sensitive and Embarrassing for the students and the staffs and kids, we will discuss the status with our Management Team about the kids photos, Contact us for deal - Nova Provide tree and samples from stolen data to the company when its get in touch with support department.
Sources
Source
Indexed 6 hours agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.