A threat actor claims to have breached the systems of Friedrich-Alexander-Universität Erlangen-Nürnberg (FAU), a prominent public research university located in Germany. The actor announced the data breach on September 25, 2025, stating that they were leaking student data and the university’s source code.
According to the threat actor, the compromised database contains a wide range of personally identifiable information (PII). The allegedly exfiltrated data includes:
- Full names
- Genders
- Dates of birth
- Email addresses
- Phone numbers and fax numbers
- Physical addresses (including street, city, zip code, and country)
- Company affiliations
In addition to the database, the university’s source code was also reportedly compromised and leaked.
