Skip to content

The University of Rochester is investigating a cybersecurity attack. This data breach, which resulted from a software vulnerability in a product provided by a third-party file transfer company, has affected the University and approximately 2,500 organizations worldwide.

The University takes your privacy and the safeguarding of our data and systems extremely seriously and our University IT staff is working closely with the FBI and an outside data forensic firm to determine what information was compromised and what possible actions need to be taken. At this time, we believe faculty, staff, and students could be impacted, but we do not yet know the full scope of the impact to University community members or which personal data was accessed, as the investigation is ongoing. We will provide updates as soon as available.

Until we know more, as a precautionary measure, we strongly urge students, faculty and staff—along with dependents—to immediately take steps to protect their personal information. This includes using strong passwords; changing passwords; using two-factor or multi-factor authentication; and checking credit card and bank records. If you notice any suspicious activity, please contact your financial institution and credit monitoring agencies right away.