Identity Theft News

Cal Berkeley health data breach affects 160,000

Monday, May 11, 2009

The University of California-Berkeley on Friday acknowledged that hackers breached a database of the university's health system records, including 160,000 names and Social Security numbers.

UC Berkeley said it was notifying the people affected about possible identity theft or fraud, but the initial data theft may have occurred months before the university's IT security administrators caught on.

The server breach began on October 9, 2008 and continued until April 9, 2009, when campus network security administrators found messages left by the hackers, according to the university's website.

The databases breached by hackers contained health insurance information and "non-treatment medical information," such as immunization records and names of physicians patients may have seen, the university said.

Investigators believe the attack was launched by hackers based overseas - who accessed a public website and bypassed security to access databases stored on the same server.

The victims of the cybertheft are current and former UC Berkeley students, as well as their parents and spouses who had UHS health care coverage dating back to 1999; and some Mills College former and current students back to 2001.

"UC Berkeley administrators pointed out that the hackers fortunately did not access University Health Services's (UHS) medical records, which include patients' diagnoses, treatments and therapies," wrote Janet Gilmore, a university media relations spokesperson.
ADNFCR-1765-ID-19162646-ADNFCR

Related News:

Threat of identity theft shows need for online security - 11.19.2009
As Americans live increasingly large portions of their lives on the internet, the possibilities and incentives for remote identity theft increase as well. A report in the New York Times advises caution, and gives tips for constructing an "online bulwark" to prevent theft and fraud.

Wi-Fi network security vulnerable to man-in-the-middle attacks on smart phones - 11.16.2009
Researchers last week revealed a weakness in mobile network security that could allow for so-called "man-in-the-middle" techniques to steal personal information from users of certain types of mobile phones.

FDIC warns banks of money transfer 'mules' duped by cybercriminals - 11.2.2009
In a new warning to banks about illicit electronic fund transfers, the Federal Deposit Insurance Corporation (FDIC) said last week that online bank account theft is rising using "money mules," unwitting job-seekers who are duped by cyber crooks into wiring funds from hacked bank accounts.

Obama addresses cybersecurity awareness in YouTube video - 10.21.2009
Online cyber attacks and identity theft have never been higher, a threat environment that challenges U.S. security every day. President Obama has designated October as National Cybersecurity Awareness Month, which he addressed in a web video last week.

Facebook application security hole exposes millions to hacking, researcher says - 10.19.2009
A security researcher is warning Facebook users about potential vulnerabilities in Facebook applications that could allow cross-site scripting (XSS) hacker attacks for hijacking user accounts.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now