Monroe University recently confirmed that a cyberattack in late 2024 resulted in the theft of sensitive data belonging to more than 320,000 individuals. The breach involved personal, financial, and medical information, leading the institution to provide credit monitoring services to those impacted by the security failure.

Monroe University, a private institution established in 1933 with campuses in New York and the Caribbean, recently disclosed a significant data breach that occurred in late 2024. Following a lengthy investigation that concluded in September 2025, officials determined that unauthorized actors had maintained access to the school’s network for a two-week period in December. The review confirmed that the private records of approximately 320,973 people were compromised during the incident.

The university reported that the stolen data included a wide range of sensitive materials, such as names, dates of birth, and Social Security numbers. Depending on the individual, the breach may have also exposed passport numbers, driver’s licenses, medical records, and health insurance information. Furthermore, financial account details and login credentials for electronic accounts were potentially accessed by the threat actors.

In response to the discovery, the school began mailing formal notification letters to the affected parties at the start of January 2026. These letters advised recipients to stay vigilant by monitoring their credit reports and financial statements for any suspicious activity. To assist those at risk, the university is offering a year of complimentary credit monitoring and identity theft protection services through a third-party provider.

This incident marks another security challenge for the institution, which faced a previous ransomware attack several years ago when it operated under the name Monroe College. That prior event involved a substantial ransom demand in cryptocurrency for the recovery of its systems. The current breach highlights a recurring vulnerability for the university as it navigates the evolving landscape of digital threats and cybercrime.

The breach at Monroe University is part of a broader trend of cyberattacks targeting educational institutions across the United States. In recent months, several other prominent universities have reported similar intrusions involving ransomware, phishing, and the exploitation of business software platforms. These coordinated attacks continue to expose the personal and financial data of thousands of students, staff members, and alumni nationwide.

Source: Monroe University Says 2024 Data Breach Affects 320,000 People