872.263.1100
872.263.1100

University of St. Thomas Data Security Investigation

Strauss Borrelli PLLC, a leading data breach law firm, is investigating the University of St. Thomas (“St. Thomas”) regarding its recent data security incident. The St. Thomas cybersecurity incident may impact the privacy of sensitive personal information belonging to an undetermined number of individuals.

ABOUT THE UNIVERSITY OF ST. THOMAS:

St. Thomas is a Catholic university based in Texas. Founded in 1947, St. Thomas offers a range of academic programs for undergraduate and graduate students, including programs in accounting, economics, marketing, nursing, international studies, general business, art history, and more.3,4 Headquartered in Houston, Texas, St. Thomas employs over 200 individuals.4

WHAT HAPPENED?

Recently, it was reported by multiple online sources that St. Thomas had experienced a cybersecurity incident impacting the privacy of its data. According to these sources, a cyberattack impacted St. Thomas servers in early August that compromised student, faculty, and staff records.1,2 A ransomware company claimed credit for the St. Thomas cyberattack and reportedly took 1.8 terabytes of data, which equates to hundreds of thousands of documents.1,2 Files reviewed from a small portion of what the ransomware company posted online related to St. Thomas appear to show staffers’ credit card, bank account, and Social Security numbers; passports and licenses; logins and passwords related to work-related accounts; some students’ home addresses, email, and phone numbers; donor contact information; and monthly country club membership fees.1 Additionally, the files reviewed contain unverified documents detailing confidential information pertaining to St. Thomas student and faculty conduct and disciplinary actions, including the names of relevant student and faculty members.1

According to an online source, a spokesperson for St. Thomas said that the university is working on a statement and there is an ongoing investigation.2 In early September, the new president of St. Thomas said that specialists were determining the scope of the “data impacted” and that affected individuals would receive a formal notification after the investigation’s completion, offering free credit monitoring codes to students, faculty, and staff in the meantime.1 As of October 16, 2025, St. Thomas has not shared a statement or acknowledgement of the cyber security incident on its website or social media pages.2

If you believe you may have been affected by the University of St. Thomas data security incident:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.

LINKS:

[1] https://www.yahoo.com/news/articles/inside-st-thomas-data-breach-120019779.html?guce_referrer=aHR0cHM6Ly93d3cuZ29vZ2xlLmNvbS8&guce_referrer_sig=AQAAAMw3Bc0piHU7sN2dzT7g3OpBJxJxwWTGz_mG61bvoxi9xaLvJXMxCYLqzEjlGatM3BKmhAvRZKD79A6hYOjWECmu2JrJ89vqQ74wt_tsQ2bjr8wBdCxH4PcT-z1YlMRsvK8PQlexIgUsR5lORYcfLMb-1LmOGmthXi6cka9nyZH4&guccounter=2

[2] https://abc13.com/post/university-st-thomas-releases-little-information-following-massive-data-breach-houston-chronicle/18007188/

[3] https://www.stthom.edu/

[4] https://www.linkedin.com/school/stthomashouston/about/

Contact Us

Learn about your legal rights

Please enable JavaScript in your browser to complete this form.
Name
Terms & Conditions and Privacy Policy

What can you do if you were impacted by a data breach?

If you were impacted by a data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services provided by the company;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Recent Posts

  • All Posts
  • Data Breach

Contact Us Now

Please enable JavaScript in your browser to complete this form.
Name
Terms & Conditions and Privacy Policy

Featured Blog Posts

What can you do if you were impacted by a data breach?

If you were impacted by a data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services provided by the company;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

One Magnificent Mile
980 N Michigan Avenue, Suite 1610
Chicago, Illinois 60611

Phone: 872.263.1100
Toll Free: 866.748.6220

Facebook Instagram Linkedin

One Magnificent Mile
980 N Michigan Avenue, Suite 1610
Chicago, Illinois 60611

Phone: 872.263.1100
Toll Free: 866.748.6220

Facebook Instagram Linkedin

©2025 STRAUSS BORRELLI PLLC. ALL RIGHTS RESERVED. ATTORNEY ADVERTISING.
PRIVACY POLICY  |  TERMS & CONDITIONS  |  COOKIE POLICY

©2025 STRAUSS BORRELLI PLLC. ALL RIGHTS RESERVED. ATTORNEY ADVERTISING.

PRIVACY POLICY  |  TERMS & CONDITIONS  |  COOKIE POLICY