In late 2025 and early 2026, the cyber-extortion group ShinyHunters (often operating under the moniker “Scattered Lapsus$ Hunters”) targeted Harvard University, specifically compromising the Alumni Affairs and Development (AAD) department. The breach, which was initially disclosed by the university in November 2025 following a sophisticated “vishing” (voice phishing) attack, resulted in the exfiltration of a massive dataset. The leak is particularly notable for its depth, exposing not just high-level contact information but also a “social graph” of some of the world’s most influential individuals, including their “wealth bands” and intimate institutional notes.

As of February 4, 2026, the published data contains the following verified records:

1,781,261 Full Names

1,344,390 Dates of Birth

1,200,000 Unique Emails

732,431 Street Addresses

612,303 Phone Numbers

Beyond basic PII, the most sensitive aspect of the breach involves the exposure of specific donation amounts-including records for high-profile donors like Mark Zuckerberg (listed as a $604 million contributor) and Michael Bloomberg-and internal “briefing notes.” These documents revealed controversial “admissions holds,” where the university allegedly paused fundraising solicitations for families with children currently in the admissions process to avoid “pay-to-play” optics. This breach has essentially turned a private database of global elite human capital into a public map for further social engineering and targeted exploitation.

Source: DataBreach.com