ShinyHunters has updated its leak site to publish what it claims is stolen data from Glendale Community College after an earlier extortion deadline expired, days after the college confirmed it experienced a cyber security incident involving unauthorized access to student records.
In a public notice, Glendale Community College said it detected suspicious activity on June 16, 2026, immediately isolated affected systems, and launched an investigation with third-party cybersecurity specialists. The college determined that certain student educational records were potentially copied without authorization and has begun notifying affected individuals.
College confirms student data incident
According to Glendale Community College, the information potentially affected varies by individual but may include names along with one or more of the following: Social Security numbers, driver’s license numbers, financial aid information, and health-related information. The college said it has no reason to believe personally identifiable employee data was compromised.
Glendale said it has implemented additional security safeguards, is reviewing its security policies and procedures, and is offering complimentary credit monitoring and identity protection services to potentially affected individuals.
Leak follows earlier warning
Glendale Community College was one of four U.S. educational institutions first listed by ShinyHunters in mid-June, when the ransomware group threatened to publish allegedly stolen data unless its demands were met before a June 18 deadline. At the time, no files had been released publicly. BreachNews previously covered those initial claims in our report on ShinyHunters’ education-sector extortion campaign.
The group’s updated leak page alleges the college failed to reach an agreement, prompting publication of the purported dataset.
ShinyHunters claims data has been released
The latest leak page alleges ShinyHunters exfiltrated more than 62 GB of data comprising over 304,000 files from the California community college. According to the listing, the data includes records from Oracle PeopleSoft Campus Solutions, admissions, enrollment, financial aid, and related administrative systems.
The group further claims the dataset contains more than 150,000 student records, including names, dates of birth, and @student.glendale.edu email addresses, along with login and enrollment mapping files, new student enrollment CSV exports, immunization compliance logs, admission checklist reports, financial aid batch exports, and transcript PDFs spanning September 2020 through June 2026.
While Glendale has confirmed that student educational records were potentially copied without authorization, it has not confirmed the volume of data, the number of affected individuals, or the specific categories of records described by ShinyHunters. BreachNews has not independently verified the authenticity of the files published by the group.
PeopleSoft remains a recurring target
The incident continues a pattern seen across multiple recent ShinyHunters education-sector victims, many of which reference Oracle PeopleSoft environments. Although Glendale has not disclosed how attackers gained access, repeated references to PeopleSoft deployments have emerged as organizations investigate attacks involving Oracle enterprise software. Earlier this month, the National Association of Insurance Commissioners confirmed a cyberattack linked to Oracle PeopleSoft exploitation, underscoring broader concerns surrounding the platform.
Glendale Community College continues to investigate the incident. BreachNews will update this story if additional technical details become available or the college comments on ShinyHunters’ claims regarding the allegedly leaked dataset.












