Following an attack on the university’s health-services centre, the information of more than 160,000 individuals is at risk. According to Berkeley, the hacked databases contain individuals' Social Security numbers, health insurance information and non-treatment medical information, such as immunization records and names of some of the treating physicians. About 160,000 individuals are believed to be impacted by the breach. Both past (as far back as 1999) and present students are affected as well as 3,400 Mills College students (as far back as 2001) who received, or were eligible to receive, health care at UC Berkeley.
According to a statement, Berkeley learned of hacking in April and immediately removed from service the exposed databases to prevent any further attacks. The college alerted campus police as well as the FBI.
"The university deeply regrets exposing our students and the Mills community to potential identity theft," said Shelton Waggener, UC Berkeley's associate vice chancellor for information technology and its chief information officer. "The campus takes our responsibility as data stewards very seriously. We are working closely with law enforcement and information security experts to identify the specific causes that may have contributed to this breach and to implement recommendations that will reduce our exposure to future attacks."
UC Berkeley administrators pointed out that the hackers did not access University Health Services' (UHS) medical records, which include patients' diagnoses, treatments and therapies. Those records are stored in a separate system and were not affected by this crime.
In other news, I'm sure it'll get sorted soon.
Bit no worry i live in EU where we are mostly divided and our goverments still have some independence ...
just look for information, don't be naive and think things will only get better
I say good thing because by doing this we avoided all that pesky discussion about the change and any issues that might be associated with it. The law also allows the gov't to take any action they deem 'reasonable' against any doctor/health provider that does not do this within a prescribed timeline (of course this is done at the health providers expense). Again all of this was stuffed (snuck?) into a 1200+ page bill that congressmen were given
Unfortunately, this is the sad state of the US political system. Myself, I think of all the riders that ALL sides and administrations have added to legislation along with the PATRIOT ACT reprint the night before the vote. Some senators have stated that the huge packet they received to vote on was still warm from the presses when they received it.
@think about this
We think alike. I was going to go into CS, but what I really wanted was a software engineering program with an eye on security. Over the last few years I have become painfully aware that computer scientists are obsessed with optimization of algorithms and often times completely ignore security - and this is indicative of the industry on a wider scale. I've since realized I can code, but what I can't do is code securely and thus have given up my aspirations in CS.
Unfortunately, these news stories of large scale hacks are becoming all too common. However, such things did happen before computers existed. Computers only make the scale much greater.
(it's funny they created an entire subdomain for this.)
From other reports I've seen, the hack appears to have originated overseas. I've read that this is probably an organized criminal act with the aim of obtaining personal info for identity theft purposes. The only really sensitive data they got was my SSN though, but this worries me none-the-less. I've known people who've been the victims of identity theft, and it's a pretty awful.