Yes — Nelson University (Waxahachie, Texas; formerly Southwestern Assemblies of God University) appears on the Texas OAG breach list published June 18, 2026, affecting 21,905 Texans. Covered in our June 18 Texas OAG roundup.
University and counsel notices state suspicious activity around April 6, 2025, with unauthorized access from about March 21 to April 6, 2025. The Qilin ransomware group claimed Nelson data on dark-web channels in April 2025. File review completed May 26, 2026; consumer mail began about June 15, 2026.
We audited nelson.edu on July 13, 2026 against the 100% ideal.
Breach Impact
| Field | Detail |
|---|---|
| Entity | Nelson University (Waxahachie, TX) |
| Sector | Private Christian university |
| Intrusion window | Mar 21 – Apr 6, 2025 |
| Texans (OAG) | 21,905 |
| Data types | Names; SSN; DL/gov ID; financial; medical |
| Notice | U.S. Mail |
| Claimed actor | Qilin (public reporting) |

Independent Cybersecurity Audit
| Domain | Overall | Identity | Transport | Website | vs 100% ideal |
|---|---|---|---|---|---|
| nelson.edu | 44% | 25% | 15% | 45% | Below Average |
Key findings: Nelson sits with Rice/SMU at 44% overall — far from 100%. 25% identity and 15% transport mean spoofed @nelson.edu monitoring enrollment and tuition phishing remain high-risk after SSN/medical exposure.

Audit: nelson.edu
Priority Actions
Students, alumni, staff: Follow only the letter’s monitoring instructions; freeze credit if advised.
Campus IT: Escalate DMARC to reject; enable MTA-STS enforce; harden help-desk callback procedures — Qilin-style intrusions often start with credential theft, then abuse trusted domains.
Related Trackers
audit.emailmenow.com · Contact
Sources: Texas OAG · ClassAction.org — Nelson · EmailMeNow audit