The University of California, Berkeley (UC Berkeley) suffered a data breach linked to a cyberattack against Accellion, a third-party service contracted by UC for secure file transfers. The “University of California Office of the President (UCOP) confirmed that attackers exploited a vulnerability in Accellion to gain access to its data,” according to one report. 

UC Berkeley employees received an email from an unknown source claiming possession of stolen personal data. The email also contained a link that showed a sample of UC employees’ personal details. The attackers threatened to expose sensitive personal information on the dark web unless demands were met. This incident reinforced the importance of robust cybersecurity measures to protect university systems and data, even from contracted third-party service providers. 

• Cyber Attack Type: Ransomware
• Affected Institution: University of California, Berkeley
• Outcomes: 
  • Hackers gained access to personal data, including names, birthdates, Social Security numbers, and banking information, and posted them online
  • UC Berkeley employees received extortion emails from attackers showcasing stolen data
  • The university launched an investigation in coordination with UCOP 
  • Free credit monitoring and identity theft protection were provided to the UC campus community

The attack originated from a security flaw in Accellion’s legacy File Transfer Appliance (FTA), a product used by various institutions to share files securely. According to another report, cybercriminals exploited this vulnerability to gain unauthorized access to confidential data across multiple organizations, including UC Berkeley. 

Following the breach, the university worked with local and federal law enforcement and third-party vendors to investigate the incident, assess the compromised information, and limit the release of stolen information. The entire UC community was also provided with a one-year complimentary credit monitoring and identity theft protection. 

How to Protect Yourself from Cyber Threats:

• Avoid Using Compromised or Outdated Applications: These applications, such as the Accellion FTA, may no longer receive security patches. Using them puts you at serious risk of compromise.
• Keep Systems Updated: Ensure that the software, applications, and operating systems you use are patched with the latest security updates. 
• Be Cautious of Phishing Attempts: If you receive emails claiming to have your personal data, do not click on any links, reply to the sender, or provide any additional information. 
• Enable Multi-Factor Authentication (MFA): MFA adds an extra layer of security by requiring additional authentication beyond a password.
• Use Unique, Strong Passwords: Avoid reusing passwords across multiple accounts to prevent credential-stuffing attacks. 

Universities remain a prime target for cybercriminals due to the wealth of sensitive data they store. By staying vigilant and implementing strong cybersecurity practices in your daily routine, you help protect UC Riverside from malicious cyber threats.