Home
>
Data Breach>New York University

New York University Data Breach Affects Millions

Published
June 10, 2025
Updated
June 10, 2025
New York University Data Breach Affects Millions
New York University
Types of INFORMATION affected
  • Names
    Names
  • Social security numbers
    Social Security Numbers
  • Dates of birth
    Dates of Birth
  • Addresses
    Addresses
  • Government IDs
    Government IDs
  • Medical Information
    Medical Info
  • Financial Info
    Financial Info

Affected by the

New York University

data breach?

Join the Lawsuit

It's free to join. 

On March 22, 2025, New York University (NYU) experienced a major cybersecurity incident that affected millions of individuals. According to official disclosures, an unauthorized actor gained access to NYU’s IT systems and took control of the systems that direct web traffic to the university’s website.

For approximately three hours, visitors to www.nyu.edu were redirected to a webpage posted by the attacker on GitHub, which linked to files that included the personal information of over three million applicants and students. According to news reports, the hacker revealed detailed applicant information, including test scores, GPAs, and more.

The breach was disclosed to the Texas Attorney General's office on June 10, 2025, reporting 32,255 Texas affected. NYU published a message about the incident on its own website on March 27, 2025.

Exposed information has been identified as personally identifiable information (PII) and includes names, Social Security numbers and other admissions data. The incident has been linked to the same actor responsible for a similar breach at the University of Minnesota.

New York University’s response

NYU responded to the cybersecurity incident by working with a cybersecurity specialist to regain control of its systems and redirect web traffic back to the legitimate NYU website. The unauthorized webpage was taken down, and law enforcement authorities were notified.

The communication posted on the NYU website states that a review is taking place, and impacted individuals will be notified as soon as the investigation is complete.

If you believe your personal information was compromised in the NYU hacking incident, you can take the following steps:

  • Carefully review any notice or communication you receive from New York University.
  • Monitor financial accounts and credit reports for signs of identity theft.
  • Consider placing fraud alerts or credit freezes with major credit bureaus.
  • Be cautious of unsolicited emails or phone calls requesting personal information.

NYU has set up a dedicated hotline at 855-754-9725 for individuals with questions or concerns about the incident.

For more information about New York University, visit NYU’s official website.

Notice Letter

This browser does not support inline PDFs. Please download the PDF to view it: Download PDF

Sources

Disclosures

Breach Summary

Affected Entity
New York University
Consumers Notification date
Date of Breach
March 22, 2025
Breach Discovered Date
2025-03-22
Total People Affected
Information Types Exposed
  • Name of individual
  • Social Security Number
  • Information
  • Admissions data
  • Personal information

Data Breach Settlements

MNGI Digestive Health $2.84M Data Breach Settlement
Rhode Island Public Transit Authority $375,000 Settlement
QTC Commercial Services $670K Data Breach Settlement
Partnership HealthPlan of California $3.7M Settlement
Harvard Pilgrim $16 Million Data Breach Settlement
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image
CTA Image

What to Read Next

Episource Data Breach Impacts Several Thousand Individuals
June 10, 2025
Episource Data Breach Impacts Several Thousand Individuals
OneGroup NY Inc. Data Breach Affects MEMIC Policies
June 10, 2025
OneGroup NY Inc. Data Breach Affects MEMIC Policies
OneGroup NY Data Breach Affects Workers' Comp Information
June 9, 2025
OneGroup NY Data Breach Affects Workers' Comp Information
Northwestern Community Services Board Data Breach Affects 21,856 Individuals
June 9, 2025
Northwestern Community Services Board Data Breach Affects 21,856 Individuals