leaksear.ch indexed a Universidad del Quindío leak on May 23, 2026, containing 30,991 records tied to the Colombian public university’s intranet, with a breach date listed as May 19, 2026 (leaksear.ch metadata). The exposed material includes user accounts, staff directory and portal records, COVID-19 entry logs, file-server credential data, CVs, complaint records, and campus_virtual login material (leaksear.ch metadata).
What happened
Universidad del Quindío operates public web properties at uniquindio.edu.co and publishes institutional news and services through that domain (www.uniquindio.edu.co). The university reported in 2022 that Colombia’s Ministry of Education renewed its institutional high-quality accreditation for six years (www.uniquindio.edu.co).
The leak-source metadata describes the exposed material as originating from the university’s intranet, not from a named third-party processor. The metadata identifies several source categories, including Joomla user accounts, staff directory entries, citizen portal registrations, COVID-19 entry logs, Pydio file-server credentials, CVs, complaint records, and a stealer-log credentials file for campus_virtual logins (leaksear.ch metadata).
The available metadata does not include a public notification, attacker name, ransom claim, malware family, or confirmed initial-access path. Because no reference links were supplied, this article does not attribute the leak to ransomware, scraping, misconfigured storage, or any specific intrusion method (leaksear.ch metadata).
What data was exposed
leaksear.ch indexed 30,991 records for this leak. Searchable fields include names, email addresses, usernames, phone numbers, addresses, countries, dates of birth, IP addresses, passwords, and hashed passwords (leaksear.ch metadata).
Other stored, non-searchable fields include capture timestamp, job or role, department or dependency, document number and type, registration date, campus or site, sex, source table, and URL (leaksear.ch metadata). The dataset description also lists CVs, complaint records, COVID-19 entry logs, Pydio credential material, and campus_virtual login material as part of the exposure (leaksear.ch metadata).
Why this matters
The combination of contact details, dates of birth, document identifiers, roles, IP addresses, and credential material can support targeted phishing, account-takeover attempts, identity-verification fraud, and pressure against students, staff, applicants, or complainants (leaksear.ch metadata). Colombia’s Law 1581 sets general rules for personal data and gives data subjects rights including knowing, updating, correcting, and accessing their personal data, while SIC guidance describes security incidents as events involving unauthorized or fraudulent access, use, loss, or alteration of personal data and sets reporting timelines in covered cases (www.funcionpublica.gov.co, sedeelectronica.sic.gov.co). If you are a student, employee, applicant, portal user, or otherwise connected to Universidad del Quindío, check whether your data appears in this leak on leaksear.ch.
Check your exposure
Vetted researchers and incident-response teams can request access or sign in if they already have access to check this dataset. Searchable pivots for this leak include address, country, date of birth, email, hashed password, ip address, name, password, phone, and username.
Sources
- Universidad del Quindío: Universidad del Quindío
- Universidad del Quindío: ¡Es un hecho! Universidad del Quindío renueva la Acreditación Institucional
- Función Pública: Ley 1581 de 2012 - Gestor Normativo
- Superintendencia de Industria y Comercio: Cumplimiento de la obligación del reporte de incidentes de seguridad