Subscribe To Our Newsletter

This field is for validation purposes and should be left unchanged.
Class Action U Logo
Check Your Eligibility

University of Dallas Data Breach

University of Dallas disclosed a hacking-related data breach after an unauthorized actor gained access to university systems between August 11 and August 20, 2025. The breach potentially exposed names and Social Security numbers, and was discovered on May 7, 2026.

Check Your Eligibility
University of Dallas
Date of Breach: August 11, 2025 through August 20, 2025
CAU logo

Who was affected:

Clients of University of Dallas

Impacted Data:

Full name

Social Security number

Check Your Eligibility

University of Dallas recently disclosed a data breach stemming from a cyberattack that allowed an unauthorized actor to access certain university systems. The incident potentially exposed sensitive personal information, including Social Security numbers, prompting notifications to affected individuals and offers of complimentary credit monitoring services.

University of Dallas’s Data Breach Investigation

University of Dallas (“UD”) announced that it experienced a cybersecurity incident involving unauthorized access to portions of its computer network. According to information submitted to state regulators, the breach was the result of an external system intrusion in which a threat actor gained access to university systems and potentially viewed files containing sensitive personal information. The incident has been classified as an external system breach, commonly referred to as a hacking event.

The university’s investigation determined that an unauthorized actor gained access to certain systems between August 11, 2025, and August 20, 2025. After discovering suspicious activity, University of Dallas worked with third-party cybersecurity specialists to investigate the incident, determine the scope of the unauthorized access, and identify what information may have been affected. The investigation included a comprehensive review of files that were potentially accessed during the intrusion.

According to the university, the review found that certain files may have contained sensitive personal information belonging to affected individuals. The information identified in the regulator filing included names and Social Security numbers. Because Social Security numbers are frequently used for identity verification and financial transactions, exposure of this information can increase the risk of identity theft and fraud.

The university reported that it discovered the breach on May 7, 2026, following its investigation into suspicious activity. Once the scope of the incident was understood, University of Dallas began notifying impacted individuals and providing resources designed to help protect against potential misuse of personal information. On or about May 29, 2026, written notification letters were sent to affected individuals, including approximately five Maine residents. The university also reported the incident to applicable state regulators and notified the major consumer reporting agencies.

In response to the incident, University of Dallas stated that it secured its environment, notified federal law enforcement, reviewed existing security measures, and implemented additional cybersecurity safeguards and employee training. The university is also offering affected individuals complimentary Experian credit monitoring and identity protection services for twelve months. These services include credit monitoring, identity restoration support, and identity theft insurance benefits.

Although University of Dallas stated that it was not aware of confirmed identity theft or fraud resulting from the incident at the time notices were issued, data breaches involving Social Security numbers can create ongoing risks. Individuals whose information was exposed may spend significant time monitoring financial accounts, reviewing credit reports, and taking precautionary measures to protect themselves from future misuse of their information.

Consumers who receive a data breach notification often have questions regarding their legal rights. Class Action U believes individuals deserve access to information that helps them understand their options and determine whether they may be entitled to compensation resulting from the exposure of their sensitive personal information.

When Did This Breach Occur?

According to the information reported by University of Dallas:

  • Date(s) Breach Occurred: August 11, 2025 through August 20, 2025
  • Date Breach Discovered: May 7, 2026
  • Date Notification Letters Were Sent: On or about May 29, 2026
  • Type of Incident: External system breach (hacking)

What Information Was Breached?

The university reported that the following information may have been exposed during the cyberattack:

  • Full name
  • Social Security number

The university’s notification letters indicate that impacted individuals were notified based on the results of a detailed review of files that may have been accessed by the unauthorized actor.

What You Can Do

If you received a data breach notification from University of Dallas, consider taking the following steps:

  • Enroll in the complimentary Experian credit monitoring services offered by the university.
  • Review bank accounts, credit card statements, and other financial records for suspicious activity.
  • Obtain and review your credit reports from the major credit reporting agencies.
  • Consider placing a fraud alert or credit freeze on your credit files.
  • Watch for signs of identity theft, including unfamiliar accounts or unauthorized transactions.
  • Maintain records of any expenses, losses, or time spent addressing issues related to the breach.

You may also wish to learn more about your legal rights. Many consumers are unaware that data breach victims may be eligible to participate in legal action seeking compensation for damages associated with the exposure of sensitive information.

File a Data Breach Lawsuit Against University of Dallas

If you received a data breach notification from University of Dallas, you may have legal rights. Organizations that collect and store sensitive personal information are expected to maintain reasonable safeguards to protect that information from unauthorized access. When a breach exposes personal information such as Social Security numbers, affected individuals may face risks including identity theft, fraud, privacy violations, and expenses associated with monitoring and protecting their identities.

A data breach lawsuit may seek compensation for losses and other harms resulting from the exposure of sensitive information. Legal action can also help encourage organizations to strengthen cybersecurity practices and better protect consumer data in the future.

Contact us at Class Action U, where we’ll connect you with a lawyer skilled in class action lawsuits. If you’ve been contacted about this breach, received notice, or discovered you were impacted, fill out our quick, easy, and secure form to sign up. There is no cost to reach out to our legal partner and no obligation after speaking with someone from our team.

VIEW PDF
Subscribe To Our Newsletter

New cases and investigations, settlement deadlines, and news straight to your inbox.

This field is for validation purposes and should be left unchanged.
Other Data Breaches
Risk Strategies Data Breach
Date of Breach: Not Specified
CG Black Financial Services Data Breach
Date of Breach: June 24, 2026
Family Health Centers of Southern Indiana Data Breach
Date of Breach: January 16, 2026
Show More

Frequently Asked Questions

A data breach occurs when sensitive, confidential, or protected information is accessed, stolen, or disclosed without authorization. Data breaches often occur through phishing emails, malware, weak passwords, insider threats, or unsecured databases. Indicators of a data breach can include unexpected password resets, suspicious account activity, unauthorized transactions, or notifications from companies about compromised information.If you suspect your data has been compromised, you must take measures and act quickly. Change passwords, enable two-factor authentication, review your financial accounts for unusual activity and consider freezing your credit.

Once stolen, your personal information may be sold on the dark web or used for identity theft and financial fraud. In some cases, hackers use the data to extort companies or launch further attacks. Victims often face long-term risks, including damage to credit and privacy.

If you receive a data breach notification, don’t ignore it. Immediately change passwords for the affected account and any others that share credentials. Enroll in any free credit monitoring services offered and monitor financial statements closely.

To pursue a data breach claim, you’ll need documentation showing your information was compromised and proof of resulting harm, such as fraudulent charges, credit score damage, or identity theft reports. Notification letters, financial records, and communication with the breached company can help support your claim.

Yes. If a company fails to protect consumer data or delays notifying victims, it may be held liable under state and federal privacy laws. Many victims join class action lawsuits to recover financial losses and hold negligent organizations accountable.

Data breach settlements vary widely depending on the size of the breach, type of data compromised, and damages suffered by victims. Payouts may include cash compensation, identity theft protection, or reimbursement for losses. Many settlements range from a few hundred to several thousand dollars per person. A skilled data breach lawyer can guide victims through the complex legal process, ensuring their rights are protected. If you’ve received a data breach notification or believe your personal data was exposed, you may be eligible for compensation. Contact Class Action U to learn more about how to join a data breach lawsuit and understand the process of filing.