Archive for October 20th, 2004

Massive Data Breach at University of California, Berkely

Wednesday, October 20th, 2004

SecurityFocus News is reporting that data for about 1.4 million Californians was put at risk due to a security breach at a computer system that contained data for California’s In-Home Supportive Services program.

It’s interesting to note that investigators are note sure whether or not the the personal information was actually extracted from the system. But California’s recently passed anti-identity theft law, SB1386, requires that all 1.4 million people whose data was on that system be notified so that they can take appropriate measures to protect their identity by calling the credit reporting agencies, etc.

Imagine, having to write a letter on your university letterhead to 1.4 million citizens of your state telling them that you were not protecting their information from theft and that an incident has occurred in which the citizen’s personal information, including social security number, has been downloaded by an unknown person.