UC Berkeley announces breach, unauthorized access to web server
University of California, Berkeley is notifying students and other individuals that unauthorized access was gained to a campus web server that contained their personal information.
How many victims? About 260 undergraduate students and some former students, as well as about 290 parents and other individuals.
What type of personal information? Social Security numbers, bank account numbers and other personal information.
What happened? Unauthorized access was gained to a campus web server that contained the personal information.
What was the response? The server was removed from the network so it can no longer be accessed. An investigation was conducted by a digital forensics firm. All impacted individuals are being notified, and offered a free year of credit monitoring services.
Details: Campus officials learned of the breach on March 14. Unauthorized access was first gained in December 2014, and a separate unauthorized access occurred in February. The web server, which is maintained by a unit within the Division of Equity and Inclusion, stored data that includes family financial information submitted by students.
Quote: “There is no evidence that such information has actually been used, but officials are notifying individuals in accordance with California law and so that they can be alert to signs of any possible misuse of their information,” according to a notification posted to the UC Berkeley website.
Source: newscenter.berkeley.edu, “Campus announces data breach,” April 30, 2015.