Columbia University Data Breach Impacts Core Systems

Columbia University experienced a significant IT outage in June 2025 that was later determined to be the result of a data breach. The incident impacted the university’s core information systems, temporarily disrupting access to email, student portals, and administrative services.

According to an official statement posted by the university on July 1, 2025, an initial investigation determined an unauthorized actor gained access to the network and stole data containing personal information belonging to faculty, staff, applicants, students, and their families.

While the full scope of the breach is still under investigation, national news reported an alleged hacker has stolen around 460 gigabytes of data, including at least 1.8 million Social Security numbers and other personal and financial information.

Columbia University's response

In response to the breach, Columbia University immediately isolated affected systems and began a comprehensive forensic review. The university will work to identify and notify affected individuals with the data breach details.

If you believe your personal work protected health information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Columbia University.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more details the university, visit the Columbia University homepage.