University of Phoenix hit by network compromise
Incident
Summary
Hide ▲
Show ▼
University of Phoenix disclosed a data breach after attackers accessed its Oracle E-Business Suite (EBS) financial application during August 13-22, 2025. The school said it detected the intrusion on November 21, 2025 after being named on Clop's data leak site, and it later disclosed the incident on December 2, 2025 with a filing by Phoenix Education Partners to the SEC. Notification letters confirmed 3,489,274 individuals were affected, including 9131 Maine residents, and the exposed data included names, contact information, dates of birth, Social Security numbers, and bank account and routing numbers. The incident is tied to a broader Clop campaign exploiting CVE-2025-61882 across more than 100 organizations, making it a significant education-sector breach with identity-theft and fraud risk.
Related Happenings
American Lending Center hit by ransomware attack
Incident
First: 15.05.2026 14:06
Last: 15.05.2026 14:06
Sources 1
About this happening:
The **American Lending Center** confirmed a **ransomware breach** that may have exposed personal data for **more than 123,000 individuals**, including **names, dates of birth, and...
American Lending Center hit by ransomware attack
IncidentAbout this happening: The **American Lending Center** confirmed a **ransomware breach** that may have exposed personal data for **more than 123,000 individuals**, including **names, dates of birth, and...
Cookeville Regional Medical Center patient records leak
Data Leak
First: 16.04.2026 18:01
Last: 16.04.2026 18:01
Sources 1
About this happening:
**Cookeville Regional Medical Center** disclosed a **data leak** affecting **337,917 patients**, exposing personal and medical records and raising identity-theft risk. Files were...
Cookeville Regional Medical Center patient records leak
Data LeakAbout this happening: **Cookeville Regional Medical Center** disclosed a **data leak** affecting **337,917 patients**, exposing personal and medical records and raising identity-theft risk. Files were...
HackerOne employee and dependent data leak after Navia breach
Data Leak
First: 24.03.2026 16:01
Last: 24.03.2026 16:01
Sources 1
About this happening:
HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
HackerOne employee and dependent data leak after Navia breach
Data LeakAbout this happening: HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
Madison Square Garden hit by network compromise linked to Cl0p
Incident
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
About this happening:
**Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Madison Square Garden hit by network compromise linked to Cl0p
IncidentAbout this happening: **Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Ingram Micro hit by ransomware attack
Incident
First: 19.01.2026 15:33
Last: 19.01.2026 15:33
Sources 1
About this happening:
**Ingram Micro** disclosed a **ransomware attack** that led to **unauthorized file theft** from internal repositories and a breach affecting **over 42,000 individuals**. The incid...
Ingram Micro hit by ransomware attack
IncidentAbout this happening: **Ingram Micro** disclosed a **ransomware attack** that led to **unauthorized file theft** from internal repositories and a breach affecting **over 42,000 individuals**. The incid...
Timeline
-
23.12.2025 18:00 1 articles · 5mo ago
University of Phoenix confirms 3,489,274 affected in Oracle EBS breach
Victim Impact UpdateNotification letters submitted to the Maine Attorney General’s Office and affected individuals on Monday confirmed that 3,489,274 individuals were affected, including 9131 Maine residents. The compromised data included names, contact information, dates of birth, Social Security numbers, and bank account and routing numbers, and University of Phoenix is offering 12 months of credit monitoring, identity theft recovery assistance, dark web monitoring, and a $1m fraud reimbursement policy.
Show sources
- Clop Ransomware Group Linked to 3.5m University of Phoenix Breach — www.infosecurity-magazine.com — 23.12.2025 18:00
-
03.12.2025 15:23 1 articles · 5mo ago
University of Phoenix detects Oracle E-Business Suite breach on November 21, 2025
Exploitation ObservedThe University of Phoenix detected unauthorized access to its Oracle E-Business Suite (EBS) financial application on November 21, 2025, after the extortion group added it to a data leak site. The compromise involved CVE-2025-61882 and exposed sensitive personal and financial information tied to numerous current and former students, employees, faculty and suppliers.
Show sources
- University of Phoenix discloses data breach after Oracle hack — www.bleepingcomputer.com — 03.12.2025 15:23
-
03.12.2025 15:23 2 articles · 5mo ago
University of Phoenix discloses breach and files SEC notice on December 2, 2025
Initial DisclosureThe University of Phoenix disclosed the breach on its official website on December 2, 2025, and Phoenix Education Partners filed an 8-K with the U.S. Securities and Exchange Commission (SEC). The university said it would review impacted data, notify affected individuals and regulatory entities, and send US Mail letters outlining the incident and next steps.
Show sources
- University of Phoenix discloses data breach after Oracle hack — www.bleepingcomputer.com — 03.12.2025 15:23
- University of Phoenix discloses data breach after Oracle hack — www.bleepingcomputer.com — 03.12.2025 15:23