Ransomware Group: LYNX

VICTIM NAME: university of chile

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the LYNX Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak concerns the University of Chile, a prominent educational institution located in Santiago, Chile. This university is recognized for its leadership in science, technology, social sciences, and arts, and it ranks among the top universities in Latin America and globally. The leak includes details about the university’s extensive network, which encompasses five campuses and numerous academic programs, serving over 43,000 students. The data breach was discovered on June 4, 2025, and attack activities began on May 30, 2025. The compromised data appears to include internal information, which may have been leaked or stolen by cybercriminals, with evidence of screenshots of internal documents shared on the leak page.

The leak page provides a link to the claim site, hosted on the dark web, where further details about the breach might be available. The webpage features visual evidence, including screenshots that may contain internal documents, but no explicit sensitive or PII data is publicly displayed. The attack was conducted by a group identified as “lynx,” and no specific infostealer or additional threat indicators are noted. The breach impacts the university’s reputation and could involve leaked academic, administrative, or personal data which has not been publicly confirmed. The event underscores the cybersecurity risks faced by institutions with valuable institutional and research information.