Life University Data Breach Exposes Social Security Numbers

On July 30, 2024, Life University experienced a cybersecurity incident involving ransomware, resulting in unauthorized access and potential exposure of sensitive personal and protected health information.

The breach was carried out by a ransomware group known as the Metaencryptor Team, who claimed responsibility for the attack and stated they obtained approximately 18.2 GB of data from Life University's systems. This data breach was disclosed publicly on April 2, 2025, through official notifications filed with the Massachusetts Attorney General's Office and the Vermont Attorney General's Office.

Upon discovering the network disruption, Life University disconnected all access to its network and promptly engaged a specialized third-party cybersecurity firm along with IT personnel to secure their systems. A comprehensive forensic investigation was conducted to determine the nature and scope of the incident. The investigation confirmed that the ransomware attack resulted in unauthorized access to sensitive data.

The compromised data included personally identifiable information (PII) such as names, addresses, dates of birth, Social Security numbers, driver's license numbers, credit card information, and financial account information.

Protected health information (PHI) such as health insurance policy numbers and medical information was also potentially exposed. The specific information exposed varied among affected individuals.

Life University conducted an extensive review of the compromised data, which involved multiple phases of automated and manual analysis due to the complexity and volume of information involved. On March 28, 2025, Life University finalized the list of individuals to notify regarding the breach.

According to the disclosure filed with the Massachusetts Attorney General's Office, approximately 10 individuals in Massachusetts were affected by this breach. The total number of affected individuals across other states has not been publicly disclosed.

For more details, you can view the official disclosure notice filed with the Massachusetts Attorney General's Office and the Vermont Attorney General's Office. Life University also posted a substitute notice on their own website.

Life University's Response

In response to this ransomware attack, Life University acted swiftly by disconnecting affected systems and engaging cybersecurity experts to investigate and secure their network. The university has also implemented additional cybersecurity measures to mitigate future risks.

To assist individuals whose Social Security numbers were potentially exposed, Life University has arranged complimentary credit monitoring and identity theft protection services. Affected individuals will receive enrollment information by mail.

If you believe you may have been impacted, it is recommended that you remain vigilant by regularly reviewing your financial statements and credit reports for suspicious activity. You can obtain a free copy of your credit report at Annual Credit Report. Additionally, consider placing a fraud alert or security freeze on your credit file by contacting one of the three national credit bureaus: Experian, Equifax, or TransUnion. Detailed instructions on how to do this are included in the official notice provided by Life University.