An alleged cyberattack would have compromised financial information of the University of San Carlos of Guatemala (Usac) and personal data of students at the Rafael Landívar University (URL), according to alerts released this Monday, April 27 on the social network X.
The Integrated Financial Information System (SIIF) of the Usac would have been violated, which exposed a database with banking information of workers, according to the cybersecurity company Vecert Analyzer.
According to the alert, the leaked data would include names, Unique Identification Code (CUI) numbers, payroll records, deposit amounts and other information corresponding to the years 2025 and 2026.
The publication indicates that the alleged person responsible for the attack is a user identified as “MrGoblinciano”, who would have disclosed the information online.
Vecert Analyzer warned that the leak would also allow the organizational structure of the university to be identified, by detailing the departments where employees work.
The firm recommended that Usac staff consult with their banks to reinforce security measures and activate alerts against possible irregular movements. In addition, he suggested auditing access to the SIIF to determine the origin of the incident.
Another university affected
In parallel, the Dark Web Informer account indicated that the Rafael Landívar University had also been the victim of a cyber attack.
According to that publication, 84,620 photographs of students and teachers were leaked, along with personal data such as university ID, full name and date of birth.
The information, which would have a size of 20 GB in images and 1.54 MB in JSON format, would have been disseminated on a cybercrime forum.
The same user, “MrGoblinciano”, was identified as allegedly responsible for this leak, which corresponds to the higher education sector.
So far, neither USAC nor URL has confirmed or ruled out the attack.
🚨 FINANCIAL INTELLIGENCE ALERT: MASSIVE LEAK – UNIVERSITY OF SAN CARLOS OF GUATEMALA (USAC) 🇬🇹🎓🏦🔓
A critical security compromise has been detected affecting the Integrated Financial Information System (SIIF) of the University of San Carlos of Guatemala (USAC). Threat actor… pic.twitter.com/2ZUhPhYBkm
— VECERT Analyzer (@VECERTRadar) April 27, 2026
‼️🇬🇹 Universidad Rafael Landívar, a Jesuit university in Guatemala, has allegedly been breached, with 84,620 photos of students and professors leaked on a popular cybercrime forum.
⠀
‣ Threat Actor: MrGoblinciano
‣ Category: Data Leak
‣ Victim: Rafael Landívar University
‣… pic.twitter.com/VnRN3veiVN— Dark Web Informer (@DarkWebInformer) April 27, 2026
*Stay up to date with the Now newsletter. Key information at the moment it happens. Subscribe here.