SAN FRANCISCO, Nov. 4, 2025 /PRNewswire/ — Schubert Jonckheer & Kolbe LLP is investigating a data breach impacting the sensitive personal information of 1.2 million students, alumni, and donors affiliated with University of Pennsylvania in Philadelphia, Pennsylvania (“UPenn”).
The threat actor behind the attack told BleepingComputer that it gained full access to an employee’s PennKey SSO account, allowing access to UPenn’s VPN, Salesforce data, Qlik analytics platform, SAP business intelligence system, and SharePoint files. The unauthorized actor claimed to obtain access to at least 1.7 gigabytes of the following data from UPenn students, alumni, and donors: names, dates of birth, addresses, phone numbers, estimated net worth, donation history, and demographic details such as religion, race, and sexual orientation.
If your personal information was impacted by this incident, you may be at risk of identity theft and other serious violations of your privacy. As a result, you may be entitled to money damages and an injunction requiring changes to UPenn’s cybersecurity practices.
If you received notification of this data breach or are affiliated with UPenn and wish to obtain additional information about your legal rights, please contact us today or visit our website at https://www.classactionlawyers.com/upenn .
About Schubert Jonckheer & Kolbe LLP
Schubert Jonckheer & Kolbe represents shareholders, employees, and consumers in class actions against corporate defendants, as well as shareholders in derivative actions against their officers and directors. The firm is based in San Francisco, and with the help of co-counsel, litigates cases nationwide.
Contact
Sonum Dixit
Schubert Jonckheer & Kolbe LLP
[email protected]
Tel: 415-299-8207
SOURCE Schubert Jonckheer & Kolbe LLP
