University of Phoenix reports data breach caused by Oracle E-Business Suite exploit
Learn More
The University of Phoenix reports a data breach affecting current and former students, employees, faculty, and suppliers after hackers exploited a vulnerability in Oracle's E-Business Suite software platform.
The University of Phoenix detected the intrusion on November 21, 2024, but the investigation concluded that unauthorized access to systems occurred in August 2024, allowing attackers to maintain persistent access for several months. The attack was carried out by exploiting CVE-2025-61882 (CVSS score 9.8), a critical zero-day vulnerability in Oracle's E-Business Suite that enables unauthenticated remote code execution.
The breach was part of a widespread extortion campaign targeting multiple academic institutions and organizations through the same Oracle vulnerability.
The compromised data includes:
- Full names
- Contact information (email addresses, phone numbers, physical addresses)
- Dates of birth
- Social Security numbers
- Bank account numbers
- Bank routing numbers
The number of affected individuals is not disclosed.
The university will provide required notifications to affected individuals and regulatory entities but did not provide details of any credit monitoring services offered.
Update - as of 22nd of December 2025, University of Phoenixreports that the incident affected 3,489,274 people.
On Dec. 21, 2025, the company began notifying relevant authorities of the breach and impacted individuals began receiving written notifications.
