University of Phoenix Data Breach: SSNs Exposed
By Join The Case · Published December 22, 2025 · Updated December 22, 2025 · 7 min read
File Your Claim Now

Dapeer Law, P.A., a top-rated class action law firm, is investigating the University of Phoenix data breach. If you received notice that your information was exposed during this breach, you may be entitled to compensation. It's free to join our investigation to see if we can help you recover.

See Featured Articles
Petco Data Breach Affects Subscriber Privacy Petco Data Breach Affects Subscriber Privacy Were you hired to help train AI models? Were you hired to help train AI models? Received a Parking Ticket Notice in the Mail from Parking Revenue Recovery Services? Received a Parking Ticket Notice in the Mail from Parking Revenue Recovery Services? The Washington Post Data Breach: SSNs Exposed The Washington Post Data Breach: SSNs Exposed Late-Night and Early-Morning Unwanted Text Messages Late-Night and Early-Morning Unwanted Text Messages

University of Phoenix Data Breach Lawsuit Investigation

Were you notified that your personal information was exposed in the University of Phoenix data breach? Our legal team is investigating potential claims for those affected. Review the facts below and take action to protect your rights.

Key Timeline

  • Breach window: August 13 – August 22, 2025
  • Incident discovered: November 21, 2025
  • Consumer notifications mailed: December 22, 2025
  • Enrollment deadline for free protections: March 22, 2026

What Happened

University of Phoenix, Inc. (University of Phoenix) determined that an unknown third-party exploited a previously undisclosed vulnerability in Oracle E-Business Suite (Oracle EBS). The attacker extracted data housed in the University’s Oracle EBS environment between August 13 and August 22, 2025. The vulnerability came to light during a security investigation on November 21, 2025, after which the University brought in leading cybersecurity firms to assist and contained the threat.

Information Involved

The University’s investigation found that the following data elements were at risk:

  • Name
  • Social Security number

No other categories of personal information were referenced in the official notice.

Response Actions

  • Reported the incident to law-enforcement authorities.
  • Engaged third-party cybersecurity experts to investigate and remediate the issue.
  • Implemented additional security measures to reduce the likelihood of future incidents.
  • Offered complimentary identity-protection services through IDX, including credit monitoring, dark-web monitoring, a $1 million identity-fraud insurance policy, and fully managed identity-recovery assistance.

Download Official Breach Notice (PDF)

Your Next Steps

  1. Enroll in the free IDX services by March 22, 2026. Call 1-833-353-7866 or visit https://response.idx.us/uphoenix/.
  2. Monitor credit reports and account statements for unusual activity.
  3. Consider placing a fraud alert or security freeze with the credit bureaus.
  4. Keep all breach-related correspondence; it may be needed for a legal claim.
  5. Contact our team to discuss your potential legal options.

Company Overview

Founded in 1976, University of Phoenix is a private institution serving working adults through online and on-campus programs.

Frequently Asked Questions

I received a data breach letter from University of Phoenix — what should I do?

Follow the steps in the notice, enroll in the free IDX identity-protection services by March 22, 2026, and monitor your accounts. If you experience fraud, document all details and contact us to discuss your legal options.

How do I submit a claim related to the University of Phoenix data breach?

Complete the form on this page or call our office. We will review your eligibility and guide you through the next steps at no cost unless we recover compensation for you.

Am I eligible to join a lawsuit against University of Phoenix?

You may qualify if your personal information was included in the breach notice. Eligibility is determined on a case-by-case basis and may depend on financial or emotional harm suffered.

What information did the University of Phoenix breach expose?

The notice states that names and Social Security numbers were involved.

Did University of Phoenix offer credit monitoring, and for how long?

Yes. The University is providing complimentary identity-protection services through IDX, including credit monitoring and identity-theft recovery support. The official notice does not specify the exact duration.

How many people were affected by the University of Phoenix breach?

The public filing does not list the total number of impacted individuals.

How can I get the official breach notice (PDF) for University of Phoenix?

You can download it directly from the Maine Attorney General’s website using the button above.

Attorney Advertising. Prior results do not guarantee a similar outcome.

File Your Claim Now

Meet Our Team

The dedicated professionals committed to helping you understand your legal rights.

Rachel Dapeer

Rachel Dapeer

Founding Partner at Dapeer Law

Learn More
Edgar Cruz

Edgar Cruz

Attorney at Dapeer Law

Learn More
View Full Team Page