top of page
perceptive_background_267k.jpg

Monroe University says 2024 data breach affects 320,000 people

Published:

14 January 2026 at 08:57:00

Alert date:

14 January 2026 at 09:00:58

Source:

bleepingcomputer.com

Click to open the original link from this advisory

Data Breach & Exfiltration

Monroe University disclosed a cyberattack in December 2024 that resulted in a significant data breach affecting over 320,000 individuals. Threat actors successfully breached the university's systems and stole personal, financial, and health information belonging to students, faculty, staff, and other associated individuals. The breach represents a major security incident for the educational institution, exposing sensitive data that could be used for identity theft and other malicious purposes. The university has likely begun notification processes for affected individuals and is working to secure their systems and prevent future incidents.

Technical details

Threat actors breached Monroe University's systems and maintained access for 2 weeks, from December 9 to December 23, 2024. The attackers stole personal, financial, and health information of 320,973 individuals. Stolen data included names, dates of birth, Social Security numbers, driver's license numbers, passport numbers, government identification numbers, medical information, health insurance information, electronic account credentials, financial account information, and student data. The university confirmed the breach in September 2025 following review of stolen documents.

Mitigation steps:

Monitor credit reports and account statements for signs of fraud or identity theft. Affected individuals are offered one year of free credit monitoring services through Cyberscout to alert them to changes in their credit files. The school began mailing breach notifications on January 2 to those whose data was stolen.

Affected products:

Oracle E-Business Suite (EBS)

Related links:

https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/738c45be-9db1-40dd-9c00-7fbb52f3c1d7.html
https://www.monroeu.edu/sites/default/files/documents/2026/01/07/DataSecurityIncident.pdf
https://www.bleepingcomputer.com/news/security/monroe-college-hit-with-ransomware-2-million-demanded/
https://www.bleepingcomputer.com/news/security/university-of-hawaii-cancer-center-hit-by-ransomware-attack/
https://www.bleepingcomputer.com/news/security/baker-university-data-breach-impacts-over-53-000-individuals/
https://www.bleepingcomputer.com/news/security/harvard-university-discloses-data-breach-affecting-alumni-donors/
https://www.bleepingcomputer.com/news/security/princeton-university-discloses-data-breach-affecting-donors-alumni/
https://www.bleepingcomputer.com/news/security/university-of-pennsylvania-confirms-data-stolen-in-cyberattack/
https://www.bleepingcomputer.com/news/security/university-of-pennsylvania-confirms-data-theft-after-oracle-ebs-hack/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page