University of Phoenix Data Breach Exposes SSNs, More; Lawsuit Possible
A data breach at the University of Phoenix exposed sensitive personal and financial information, potentially leading to a class action lawsuit.Summary
The University of Phoenix recently experienced a data breach impacting current and former students, employees, faculty, and suppliers. The breach, discovered on November 21, 2025, exploited a vulnerability in their Oracle eBusiness Suite (EBS) software, allowing an unauthorized third party to access and remove data. Compromised information includes names, contact details, Social Security numbers, dates of birth, and banking information. The parent company, Phoenix Education Partners, Inc., filed a report with the SEC on December 2, 2025, noting this attack was part of a larger campaign targeting multiple organizations, including Dartmouth College. ClassAction.org is investigating a potential class action lawsuit on behalf of those affected, seeking compensation for privacy loss and related damages, and aiming to improve the university’s data security measures. Individuals who received notification or believe their information was compromised are encouraged to contact the firm.
(Source:ClassAction.org)