Back

Lansing Community College Data Breach Impacts Over 174,000 Individuals

Severity: Medium (Score: 51.9)

Sources: www.lansingstatejournal.com, Aol

Published: 2026-06-10 · Updated: 2026-06-11

Keywords: lansing, breach, data, community, college, people, february

Severity indicators: breach, data breach, college

Summary

Lansing Community College (LCC) reported a data breach that occurred from February 12 to February 18, 2025, affecting 174,307 individuals, including 31 from Maine. The breach was attributed to credential compromise, allowing unauthorized access to personal information such as names, addresses, dates of birth, Social Security numbers, and driver's license details. Affected individuals were notified on June 5, 2026, and LCC is offering two years of complimentary credit monitoring and identity protection services. This incident follows previous breaches in 2022 and 2023 that exposed data of over 750,000 individuals, leading to legal settlements totaling $1.45 million. LCC has engaged third-party specialists to enhance its security measures following the breach. No evidence of identity theft or fraud has been reported as a result of this incident. Key Points: • A data breach at Lansing Community College affected 174,307 individuals. • The breach occurred due to credential compromise and exposed sensitive personal information. • LCC is providing two years of free credit monitoring to affected individuals.

Detailed Analysis

**Impact** The breach affected 174,307 individuals, including 31 residents of Maine and others out-of-state. The compromised data included personal information such as names, addresses, dates of birth, Social Security numbers, and driver's license details. The affected population comprises current and former students, employees, and applicants of Lansing Community College. The incident follows previous breaches in 2022 and 2023 that exposed data of over 750,000 individuals and resulted in $1.45 million in legal settlements. **Technical Details** The attack occurred between February 12 and February 18, 2025, involving unauthorized access through credential compromise. A third-party security team identified that hackers accessed systems containing sensitive personal data. There is no evidence that data was exfiltrated or misused at this time. No specific malware, CVEs, or infrastructure details were disclosed in the reports. **Recommended Response** Organizations should monitor for credential compromise attempts and enforce multi-factor authentication to prevent unauthorized access. Impacted individuals should be provided with credit monitoring and identity protection services, as Lansing Community College has done for 24 months. Security teams should review access logs for unusual activity during the breach window and strengthen password policies. No specific patches or IOCs were provided in the available information.

Source articles (3)

  • Lansing Community College data breach impacts more than 170K people, reports say — Aol · 2026-06-09
    LANSING, Mich. (WLNS) — A data breach reportedly hit Lansing Community College in February and allegedly affected more than 170,000 people. The breach occurred on February 12 and was discovered on Feb…
  • New Lansing Community College data breach affects 174,000 people — Aol · 2026-06-10
    LANSING — Lansing Community College has reported a February 2025 data breach that affected 175,000 people including out-of-state residents. The data breach notice filed with the Office of the Maine At…
  • New Lansing Community College data breach affects 174,000 people — www.lansingstatejournal.com · 2026-06-10

Timeline

  • 2025-02-12 — Data breach occurred: Unauthorized access to LCC systems began, affecting personal information of students and staff.
  • 2025-02-18 — Breach discovered: LCC identified the unauthorized access and began an investigation with third-party specialists.
  • 2026-06-05 — Notification to affected individuals: LCC notified 174,307 impacted individuals about the breach and offered credit monitoring services.
  • 2026-06-09 — Details reported by media: Media outlets reported on the breach, highlighting the scale and nature of the incident.

Related entities

  • Data Breach (Attack Type)
  • Lansing Community College (Company)
  • CWE-200 - Exposure of Sensitive Information (Cwe)
  • lsj.com (Domain)
  • [email protected] (Email)
  • T1078 - Valid Accounts (Mitre Attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed