Loyola University Maryland Suffers Data Breach

Key facts: Loyola University Maryland data breach

• Date reported: February 3, 2026.
• Unauthorized access identified: December 19, 2025.
• Incident date: On or around September 9, 2025.
• Target entity: Loyola University Maryland (loyola.edu).‍
• Cause: Unauthorized access to a single university email account.‍
• Data types: Full names and potentially other sensitive personal identifiers.‍
• Severity: Medium; the university is offering complimentary credit monitoring services to those affected.

What happened in the Loyola University Maryland data breach?

Loyola University Maryland reported a data security incident on February 3, 2026, involving unauthorized access to a university email account. According to the university's investigation, an unauthorized actor gained access to the account on or around September 9, 2025. Upon discovering the issue, the university launched a forensic investigation with the help of external cybersecurity professionals.

On December 19, 2025, the investigation confirmed that files within the impacted email account contained personal information. While the breach was limited to a single account, the manual document review process required several weeks to identify the specific individuals whose data was at risk. Formal notification letters were sent to these individuals in early February 2026.

Who is behind the incident?

The specific attacker or threat group responsible for the unauthorized access has not been identified. However, breaches involving single email accounts are often the result of "credential harvesting" or phishing attacks, where an attacker tricks a user into revealing their login credentials. There is no evidence at this time that the university’s broader network or student database was compromised.

Impact and risks for Loyola University Maryland customers

For the individuals whose information was stored within the compromised email account, the primary risk is the potential misuse of their personal identifiers for identity theft or targeted phishing. Although the university stated there is no current evidence of data misuse, the exposure of full names and associated personal data can be used by scammers to craft convincing fraudulent messages.

To mitigate these risks, Loyola University Maryland is providing affected individuals with complimentary access to credit monitoring and identity restoration services. Affected parties are encouraged to enroll in these services and remain vigilant by reviewing their financial statements and credit reports for any irregular activity.

Frequently asked questions

What happened in the Loyola University Maryland security breach?

An unauthorized actor gained access to one Loyola University Maryland email account in September 2025. A forensic review completed in December 2025 confirmed that the account contained files with personal information, such as full names.

When did the Loyola University Maryland breach occur?

The unauthorized access took place on or around September 9, 2025. The university identified the specific files and individuals affected on December 19, 2025, and publicly reported the incident on February 3, 2026.

What data was exposed?

The university has confirmed that full names were included in the impacted files. In some instances, depending on the specific documents stored in the email account, other personal identifiers may have been present. The notification letters sent to individuals specify exactly what information belonging to them was at risk.

Is my personal information at risk?

If you received a formal notice letter from the university in February 2026, your personal information was contained in the compromised email account and is considered at risk. If you did not receive a letter, your data was likely not involved in this specific incident.

How can I protect myself after a data breach?

• Enroll in the complimentary credit monitoring and identity protection services offered in your notification letter.
• Change your university email password and ensure it is unique from your other accounts.
• Enable multi-factor authentication (MFA) on all university and personal accounts.
• Monitor your financial accounts and credit reports for any suspicious or unauthorized transactions.
• Be cautious of unsolicited emails or text messages that reference your relationship with Loyola University Maryland.

What steps should companies take after being breached?

After discovering a breach, organizations should immediately secure the affected account, conduct a forensic investigation to determine the scope of the exposure, and notify the individuals impacted. Loyola University Maryland has stated it is continually evaluating and modifying its internal controls and security practices to prevent similar incidents in the future.