Harvard just fessed up to a sneaky voice phishing attack that infiltrated their Alumni Affairs and Development systems, exposing email addresses, phone numbers, home/business details, event logs, donation records, and some bio info for alumni, donors, spouses, student parents, and even a few faculty and staff—thankfully, no SSNs, passwords, or financial data got hit. This isn’t their first rodeo; they’re already probing with cops and cyber pros after discovering the breach on November 18, 2025, and quickly sent out warnings to affected folks on November 22. As SMBs and MSPs know all too well, these incidents highlight why robust phishing defenses like multi-factor auth and employee training are non-negotiable to keep bad actors at bay. And with other Ivy League schools like Princeton and Penn also dealing with similar donor data leaks, it’s a stark reminder to stay vigilant against social engineering tactics that could target your own customer or client info. If you’re running a small biz, double-check your systems for weak spots and educate your team on spotting phishy calls or messages before they turn into a headache.
You May Also Enjoy
French Football Federation discloses data breach after cyberattack
The French Football Federation (FFF) recently fessed up to a data breach where hackers snagged access to their admin software via a hijacked account, exposin...
Malicious LLMs empower inexperienced hackers with advanced tools
Malicious large language models like WormGPT 4 and KawaiiGPT are basically handing out cybercrime starter kits, letting script kiddies crank out sophisticate...
OpenAI discloses API customer data breach via Mixpanel vendor hack
OpenAI just fessed up to a sneaky data slip involving some ChatGPT API users, all thanks to a smishing attack on their analytics vendor, Mixpanel—yeah, that ...
Mixpanel Security Breach
Mixpanel recently spilled the beans on a security hiccup involving a smishing attack that snuck up on a handful of customers back on November 8th, 2025, prov...