University of Phoenix data breach hits 3.5M people

The University of Phoenix has confirmed a large information breach affecting astir 3.5 cardinal people. The incidental traces backmost to August erstwhile attackers accessed the university's web and softly stole delicate information.

The schoolhouse detected the intrusion connected Nov. 21. That find came aft the attackers listed the assemblage connected a nationalist leak site. In aboriginal December, the assemblage disclosed the incident, and its genitor institution filed an 8-K with regulators.

The scope is large. Notification letters filed with Maine's Attorney General amusement 3,489,274 individuals are impacted. Those affected see existent and erstwhile students, faculty, unit and suppliers.

Sign up for my FREE CyberGuy Report

Get my champion tech tips, urgent information alerts and exclusive deals delivered consecutive to your inbox. Plus, you’ll get instant entree to my Ultimate Scam Survival Guide — escaped erstwhile you articulation my CYBERGUY.COM newsletter.

DATA BREACH EXPOSES 400K BANK CUSTOMERS’ INFO

The University of Phoenix information breach exposed delicate idiosyncratic and fiscal accusation tied to astir 3.5 cardinal people. (Kurt "CyberGuy" Knutsson)

What happened and however attackers got in

According to the university, hackers exploited a zero-day vulnerability successful Oracle E-Business Suite. This exertion handles fiscal operations and contains highly delicate data.

Based connected the method details shared truthful far, information researchers judge the onslaught aligns with tactics utilized by the Clop ransomware gang. Clop has a agelong way grounds of stealing information done zero-day flaws alternatively than encrypting systems.

The vulnerability tied to this run is tracked arsenic CVE-2025-61882. Investigators accidental it has been abused since aboriginal August.

What information was exposed

The assemblage says the attackers accessed highly delicate idiosyncratic and fiscal information. That includes:

• Full names
• Contact information
• Dates of birth
• Social information numbers
• Bank relationship numbers
• Routing numbers

This benignant of information creates a superior risk. It tin substance individuality theft, fiscal fraud, and targeted phishing scams.

700CREDIT DATA BREACH EXPOSES SSNS OF 5.8M CONSUMERS

Stolen University of Phoenix records could beryllium utilized by criminals to motorboat targeted phishing and individuality theft attacks.  (Kurt "CyberGuy" Knutsson)

Nearly 3.5 cardinal radical impacted

In letters sent to affected individuals, the assemblage confirmed the breach affects 3,489,274 people. If you are a existent oregon erstwhile pupil oregon employee, ticker your message closely.

These notifications often get by postal mail, not email. The missive explains what information was exposed and includes instructions for protective services.

We reached retired to The University of Phoenix for comment, and a rep provided CyberGuy with the pursuing statement: 

"We precocious experienced a cybersecurity incidental involving the Oracle E-Business Suite bundle platform. Upon detecting the incidental connected November 21, 2025, we promptly took steps to analyse and respond with the assistance of starring third-party cybersecurity firms. We are reviewing the impacted information and volition supply the required notifications to affected individuals and regulatory entities."

Free individuality extortion is present available

The University of Phoenix is offering impacted individuals escaped individuality extortion services. These include:

• 12 months of recognition monitoring
• Identity theft betterment assistance
• Dark web monitoring
• A $1 cardinal fraud reimbursement policy

To enroll, you indispensable usage the redemption codification provided successful the notification letter. Without that code, you cannot activate the service.

This onslaught fits a larger Clop campaign

The University of Phoenix breach is not an isolated case. Clop has utilized akin tactics successful past campaigns involving GoAnywhere MFT, Accellion FTA, MOVEit Transfer, Cleo, and Gladinet CentreStack.

Other universities person besides reported Oracle EBS-related incidents. These see Harvard University and the University of Pennsylvania.

The U.S. authorities is taking notice. The U.S. Department of State is present offering a reward of up to $10 cardinal for accusation linking Clop's attacks to a overseas government.

Why colleges are premier targets

Universities store monolithic amounts of idiosyncratic data. Student records, fiscal assistance files, payroll systems, and donor databases each unrecorded nether 1 roof.

Like healthcare organizations, colleges contiguous a high-value target. A azygous breach tin exposure years of information tied to millions of people.

MAKE 2026 YOUR MOST PRIVATE YEAR YET BY REMOVING BROKER DATA

Affected University of Phoenix students and unit should enactment rapidly to show accounts and support their identities. (Kurt "CyberGuy" Knutsson)

Steps to enactment harmless close now

If you judge you whitethorn beryllium affected, enactment quickly. These steps tin trim your risk.

1) Watch for your breach notification letter

Read it carefully. It explains what information was exposed and however to enroll successful extortion services.

2) Enroll successful the escaped individuality protection

First, usage the redemption codification provided. Because societal information and banking information are involved, recognition monitoring and betterment services matter. Even if you bash not suffice for the escaped service, an individuality theft extortion work is inactive a astute move.

In addition, these services actively show delicate details similar your societal information number, telephone fig and email address. If your accusation appears connected the acheronian web oregon if idiosyncratic tries to unfastened a caller account, you person an alert close away. As a result, galore services besides assistance you rapidly frost slope and recognition paper accounts to bounds further fraud.

See my tips and champion picks connected however to support yourself from individuality theft astatine Cyberguy.com

3) Use a information removal service

Because this breach exposed names, interaction details and different identifiers, reducing what is publically disposable astir you matters. A information removal work tin assistance region your idiosyncratic accusation from information broker sites, which lowers the hazard of targeted phishing oregon fraud tied to the stolen University of Phoenix records.

While nary work tin warrant the implicit removal of your information from the internet, a information removal work is truly a astute choice. They aren't cheap, and neither is your privacy. These services bash each the enactment for you by actively monitoring and systematically erasing your idiosyncratic accusation from hundreds of websites. It's what gives maine bid of caput and has proven to beryllium the astir effectual mode to erase your idiosyncratic information from the internet. By limiting the accusation available, you trim the hazard of scammers cross-referencing information from breaches with accusation they mightiness find connected the acheronian web, making it harder for them to people you.

Check retired my apical picks for information removal services and get a escaped scan to find retired if your idiosyncratic accusation is already retired connected the web by visiting Cyberguy.com

Get a escaped scan to find retired if your idiosyncratic accusation is already retired connected the web: Cyberguy.com

4) Monitor fiscal accounts daily

Check slope statements and recognition paper enactment for unfamiliar charges. Report thing suspicious immediately.

5) Consider freezing your credit

A recognition frost tin halt criminals from opening caller accounts successful your name. It is escaped and reversible. To larn much astir however to bash this, spell to Cyberguy.com and hunt "How to frost your credit." 

6) Be alert for phishing attempts and usage beardown antivirus software 

Expect much scam emails and telephone calls. Criminals whitethorn notation the breach to dependable legitimate.

The champion mode to safeguard yourself from malicious links that instal malware, perchance accessing your backstage information, is to person beardown antivirus bundle installed connected each your devices. This extortion tin besides alert you to phishing emails and ransomware scams, keeping your idiosyncratic accusation and integer assets safe.

Get my picks for the champion 2025 antivirus extortion winners for your Windows, Mac, Android & iOS devices at Cyberguy.com

7) Secure your devices

Keep your operating systems and apps up to date, arsenic attackers often exploit outdated bundle to summation access. In addition, alteration automatic updates and reappraisal app permissions to forestall stolen idiosyncratic information from being combined with device-level entree and causing further harm.

Kurt's cardinal takeaways

The University of Phoenix information breach highlights a increasing occupation crossed higher education. When attackers exploit trusted endeavor software, the fallout spreads accelerated and wide. While escaped individuality extortion helps, semipermanent vigilance matters most. Staying alert tin bounds harm agelong aft the headlines fade.

If universities cannot support this level of delicate data, should students request stronger cybersecurity standards earlier enrolling? Let america cognize by penning to america astatine Cyberguy.com

CLICK HERE TO DOWNLOAD THE FOX NEWS APP

Sign up for my FREE CyberGuy Report 

Get my champion tech tips, urgent information alerts, and exclusive deals delivered consecutive to your inbox. Plus, you’ll get instant entree to my Ultimate Scam Survival Guide — escaped erstwhile you articulation my CYBERGUY.COM newsletter. 

Copyright 2025 CyberGuy.com.  All rights reserved.