Connecting state and local government leaders

UCLA Notifies 32,000 Students of Cyberattack

Royce Hall at the University of California at Los Angeles

Royce Hall at the University of California at Los Angeles Shutterstock

 

Connecting state and local government leaders

The hacked server housed personal information including names, birthdates, Social Security numbers, health insurance IDs and some medical information supplied by the students.

This was originally published as part of ThreatWatch, part of our sibling publication Nextgov's regularly updated index of cyber incidents. 

The University of California, Los Angeles recently reported a cyberattack on a server that contained the personal information of about 32,000 students.

The university detected unauthorized access to a Summer Sessions & International Education Office server on May 18 and started notifying potentially impacted students when the forensics “could not rule out all risk to the personal information on the server,” according to a university statement.

The server housed personal information including names, birthdates, Social Security numbers, health insurance IDs and some medical information supplied by the students like whether they have allergies or are taking medication. The attack affects students who provided information before April 13, 2016.

“Extensive forensic analysis of the attack does not show that the attacker actually accessed or acquired any personal information on the server,” the university said. However, it will offer students one year of free credit protection and suggests they monitor their credit and debit statements.