SCUHS Data Breach Impacts 2,206 Individuals

Southern California University of Health Sciences, a private nonprofit university in Whittier, California, experienced a data breach that affected approximately 2,206 people in the United States.

The breach was disclosed to attorneys general in California and Maine on May 19, 2026.

On March 24, 2026, the university became aware of unauthorized activity on its computer network. SCUHS launched an investigation with the help of outside cybersecurity specialists to secure the network and understand the nature and scope of the activity.

The investigation determined that an unauthorized actor viewed and copied certain files stored on the university's network between March 23 and March 24, 2026.

After securing its systems, the university conducted a thorough review of the affected files to determine what information was involved and to identify the individuals whose data was compromised.

The personal information exposed in the breach included names and other personal information.

Southern California University of Health Sciences' response to the breach

Southern California University of Health Sciences is offering affected individuals 12 months of free credit monitoring and identity protection services through Kroll at no cost.

To enroll in the free monitoring services, affected individuals should visit Kroll's enrollment page and enter the membership number included in their written notification letter. Enrollment must be completed before the deadline listed in the letter.

The university has also set up a dedicated phone line for questions about the breach. Affected individuals can call 844-959-7075, Monday through Friday, from 6 a.m. to 3:30 p.m. Pacific Time, excluding U.S. holidays.

Questions can also be sent by email to PrivacyNotice@scuhs.edu.