CPM Investigating New York University Data Breach
CPM is investigating a data breach involving over three million applicants to New York University. According to NYU’s student newspaper, a hacker took over the university’s website on March 22, 2025, to expose the potential students’ names, test scores, majors and zip codes, as well as information related to family members, dating back to at least 1989. The hacked page posted four accessible CSV files revealing admission data going back to 1989 containing highly sensitive information, including citizenship status and details of financial aid. NYU has yet to personally notify affected applicants.
If you applied to NYU and believe your information was included in the data breach, or you have received a notification from an identity theft monitoring service that your data was included, you may be entitled to compensation.
Academic institutions like NYU that handle students’ most sensitive information must do more to protect the valuable data entrusted to them. Applicants deserve to have their information protected, and when universities fall short of their obligations, they are entitled to compensation. Cotchett, Pitre & McCarthy Partner, Thomas E. Loeser, is a former federal cyber-prosecutor specializing in hacking and data breach cases. If you believe you were affected by the NYU data breach, please fill out the form below to make sure your rights are protected, and that the university is held to account for its failure to protect your information.
Articles regarding the breach
https://nyunews.com/news/2025/03/22/nyu-website-hacked-data-leak/