Monroe University Data Breach Exposes Personal and Health Information of Over 320,000 Individuals
Monroe University has disclosed a significant data security incident affecting approximately 320,973 individuals, whose personal and health information may have been compromised. The breach occurred between December 9 and December 23, 2024, when an unauthorized party accessed the university’s computer systems. The intrusion was detected on December 23, 2024, prompting immediate containment efforts and an internal investigation.
By September 30, 2025, the investigation confirmed that the attacker exfiltrated sensitive files containing a range of data, including names, dates of birth, Social Security numbers, driver’s license and passport numbers, government IDs, medical records, health insurance details, email credentials, financial account information, and student data. Affected individuals began receiving mailed notifications on January 2, 2026.
While the university has stated there is no evidence of data misuse, the breach underscores the ongoing risks to large-scale repositories of personal information. The incident remains under review as authorities assess its full impact.
Monroe University cybersecurity rating report: https://www.rankiteo.com/company/monroe-university
"id": "MON1768995600",
"linkid": "monroe-university",
"type": "Breach",
"date": "12/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '320,973',
'industry': 'Education',
'name': 'Monroe University',
'type': 'Educational Institution'}],
'customer_advisories': 'Mailed notifications to affected individuals on '
'January 2, 2026',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': '320,973',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Dates of birth',
'Social Security numbers',
'Driver’s license numbers',
'Passport numbers',
'Government IDs',
'Medical records',
'Health insurance details',
'Email credentials',
'Financial account information',
'Student data']},
'date_detected': '2024-12-23',
'date_publicly_disclosed': '2026-01-02',
'description': 'Monroe University has disclosed a significant data security '
'incident affecting approximately 320,973 individuals, whose '
'personal and health information may have been compromised. '
'The breach occurred between December 9 and December 23, 2024, '
'when an unauthorized party accessed the university’s computer '
'systems. The intrusion was detected on December 23, 2024, '
'prompting immediate containment efforts and an internal '
'investigation. By September 30, 2025, the investigation '
'confirmed that the attacker exfiltrated sensitive files '
'containing a range of data, including names, dates of birth, '
'Social Security numbers, driver’s license and passport '
'numbers, government IDs, medical records, health insurance '
'details, email credentials, financial account information, '
'and student data. Affected individuals began receiving mailed '
'notifications on January 2, 2026.',
'impact': {'data_compromised': 'Personal and health information of 320,973 '
'individuals',
'identity_theft_risk': 'High',
'payment_information_risk': 'High',
'systems_affected': 'University’s computer systems'},
'investigation_status': 'Under review',
'response': {'communication_strategy': 'Mailed notifications to affected '
'individuals',
'containment_measures': 'Immediate containment efforts',
'incident_response_plan_activated': 'Yes'},
'title': 'Monroe University Data Breach Exposes Personal and Health '
'Information of Over 320,000 Individuals',
'type': 'Data Breach'}