Cyber security incident: please help protect NTU by resetting your password

Published: 10/07/2025

Over the last few days we have been working to mitigate the impact of a cyber security incident, which was limited to a small number of our servers.

Suspicious activity on our servers was picked up quickly by our colleagues in Digital Technologies, and our cyber incident management plans initiated.

For now we can confirm that the running of the University has not been impacted and all our student systems are unaffected. We remain confident that this issue has been contained.

From investigations to date, we can confirm that the external party viewed our Active Directory. The information viewed includes names, NTU email addresses and, for those who have entered it in to the system, a telephone number. It does not include any other personal data, such as dates of birth, bank account or national insurance details.

NTU ‘hashed’ account passwords may also have been viewed, however ‘hashed’ means that the information is masked and not visible to any unauthorised individual.

However, as an additional security measure we have reset the passwords on all NTU accounts. This means you will need to reset your password before you can access your NTU account. Further details of how to do this are below.

Once you have reset your password, there is nothing further for you to do although we continue to recommend that you remain vigilant to suspicious activity and report anything suspicious to support@ntu.ac.uk.

How to change your password

Using your own device, please visit mypassword.ntu.ac.uk to reset your NTU password.

You will be asked your personal security questions. If these aren’t set you will be asked to confirm elements of your personal data (e.g. non term-time postcode etc).

Follow the instructions and make sure the password you chose is strong and secure.

Should you use your NTU password for any other online account we would also recommend resetting it there.