Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Harvard Center for International Development

Harvard Center for International Development Vendor Cyber Rating & Cyber Score

harvard.edu
in
Add Your Compliance Badge
ISO 27001
SOC 2 Type 1
SOC 2 Type 2
PCI DSS
HIPAA
GDPR

Housed at Harvard Kennedy School, the Center for International Development (CID) is a research center working across Harvard University and a global network of researchers and practitioners to build an international pool of talent, convene academic and practitioner networks, and deploy breakthrough research to address the world’s most pressing challenges. At CID, we believe that together we can design and implement policies that help everyone realize their full potential.


HCID A.I CyberSecurity Scoring

Incident Details
HCID
Company Information
Website:http://www.cid.harvard.edu
Employees number:62
Number of followers:43,051
NAICS:6113
Industry Type:Higher Education
Homepage:harvard.edu
Cyber Premium EstimationGet Supply Chain
HCID Risk Score (AI oriented)
Between 650 and 699
logo
HCIDHigher Education
Updated:
05/04/2026
664/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
HCID Global Score (TPRM)
xxxx
logo
HCIDHigher Education
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

HCID
HCIDWeak
Current Score
664B (WEAK)
01000
2 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JUNE 2026
668Before Incident
MAY 2026
666Before Incident
APRIL 2026
664Before Incident
MARCH 2026
663Before Incident
FEBRUARY 2026
661Before Incident
JANUARY 2026
660Before Incident
DECEMBER 2025
658Before Incident
NOVEMBER 2025
656Before Incident
OCTOBER 2025
654Before Incident
SEPTEMBER 2025
652Before Incident
AUGUST 2025
650Before Incident
JULY 2025
648Before Incident
JUNE 2025
767Before Incident
Ransomware
16 Jun 2025HCID
Harvard University

Harvard University Oracle EBS Cyberattack by Cl0p Ransomware Group

645After Incident
CRITICAL-122
HAR2592125101425
Harvard University was targeted in a cyberattack by the Cl0p (Clop) ransomware group, which exploited a zero-day vulnerability (CVE-2025-61882, CVSS 9.8) in Oracle E-Business Suite (EBS). The attackers leaked 1.3 TB of stolen data, including financial, HR, customer, supplier, and inventory information, though Harvard claimed the breach was limited to a small administrative unit. The Cl0p group, known for double extortion (data theft + ransom demands), published the stolen data on its Tor leak site and threatened further exposure. The attack leveraged hacked email accounts and default password resets in Oracle EBS to gain unauthorized access. While Harvard downplayed the incident, the scale of data exfiltration—affecting employees, students, and operational records—suggests severe reputational, financial, and operational risks. The Cl0p group, linked to FIN11 and Russian cybercrime syndicate TA505, has a history of high-profile attacks, including MOVEit, GoAnywhere, and Accellion FTA breaches.
INCIDENT DETAILS -
TYPE
Data BreachRansomware AttackExtortion
MOTIVATION
Financial Gain (Extortion)
IMPACT
Data Compromised: 1.3 TBOracle E-Business Suite (limited to a small administrative unit)Operational Impact: Limited (confined to administrative unit)Brand Reputation Impact: Moderate (public disclosure of breach by prestigious institution)Identity Theft Risk: Potential (depends on compromised data types)Payment Information Risk: Potential (if financial/HR data included)
DATA BREACH
FinancialHRCustomerSupplierInventorySensitivity Of Data: Varies by victim (high for HR/financial)Personally Identifiable Information: Likely (if HR/customer data included)
REFERENCES
Blog URLSource URL
JUNE 2019
770Before Incident
Cyber Attack
16 Jun 2019HCID
Harvard University

Harvard University Data Breach via Oracle E-Business Suite Vulnerability

734After Incident
CRITICAL-36
HAR1402414101425
Harvard University is investigating a data breach after the Russian-speaking cybercrime group Clop exploited a vulnerability in the Oracle E-Business Suite (versions 12.2.3–12.2.14). The breach, part of a broader attack targeting over 100 organizations, involved unauthorized data exfiltration, though Harvard’s initial probe suggested only a limited number of parties in a small administrative unit were affected. Clop, known for extorting victims by threatening to leak stolen data, publicly claimed responsibility in late September 2023, demanding ransom payments. While Harvard applied patches and found no evidence of wider system compromise, the incident aligns with Clop’s history of high-profile attacks, including the 2023 MoveIt breach (affecting 2,773+ organizations) and a 2019 ransomware attack on Maastricht University. Oracle acknowledged the vulnerability in October, issuing patches after initially downplaying the risk. The stolen data’s nature remains undisclosed, but Clop’s modus operandi suggests potential exposure of sensitive administrative or personal records.
INCIDENT DETAILS -
TYPE
Data BreachExtortionExploitation of Software Vulnerability
MOTIVATION
Financial GainExtortion
IMPACT
Oracle E-Business Suite (limited to a small administrative unit at Harvard)Operational Impact: Limited (affected a small administrative unit)Brand Reputation Impact: Potential (public disclosure of breach by a high-profile threat actor)
REFERENCES
Blog URLSource URL

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for HCID ?
?
What was HCID's A.I Rankiteo Cyber Score in May 2026 ?
?
What was HCID's A.I Rankiteo Cyber Score in April 2026 ?
?
What was HCID's A.I Rankiteo Cyber Score in March 2026 ?
?
What was HCID's A.I Rankiteo Cyber Score in February 2026 ?
?
What was HCID's A.I Rankiteo Cyber Score in January 2026 ?
?
What was HCID's A.I Rankiteo Cyber Score in December 2025 ?
?
What was HCID's A.I Rankiteo Cyber Score in November 2025 ?
?
What was HCID's A.I Rankiteo Cyber Score in October 2025 ?
?
What was HCID's A.I Rankiteo Cyber Score in September 2025 ?
?
What was HCID's A.I Rankiteo Cyber Score in August 2025 ?
?
What was HCID's A.I Rankiteo Cyber Score in July 2025 ?
?
What is the average per-incident point impact on HCID's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with HCID ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view HCID's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?