iEntry 10th Anniversary RSS Archive

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Berkeley Hack Unnoticed For Six Months
Search:
[ insider_reports_insider ]

Berkeley Hack Unnoticed For Six Months



SecurityProNews
Staff Writer
2009-05-11

SecurityProNews: Insider Reports Insider Reports RSS Feed


It's embarrassing enough for an institution when its databases are hacked and trusting clientele have their information accessed by an anonymous third party. It's doubly embarrassing when it's discovered an institution's databases were wide open for six months.

Berkeley Hack Unnoticed For Six Months
Berkeley Hack Unnoticed For Six Months

The University of California at Berkeley discovered its healthcare database containing the medical records and social security numbers of up to 160,000 students was breached in April. But at that point, the records had been open to hackers since October of last year.

Affecting students as far back as 1999, the university is now embarking on the costly endeavor of identifying and alerting those whose data was compromised. Though it is unclear if the medical information would have any value, the social security numbers certainly would.

The length of time it took network administrators to discover the breach likely means there was no active monitoring system in place, according to security experts. Other, like Faizel Lakhani, VP of Network DLP at McAfee, suggest lack of mandated security protocols is the main culprit.

"Technology exists to protect data but the use of these tools is spotty because of the bet organizations are making that ‘it won't happen to me'," said Lakhani. "Just like car insurance is mandatory to drive a car data loss prevention tools should be mandatory for every organization."

It may come as a surprise to many that Berkeley, with a reputation for producing high-tech, high-profile graduates, would have been so vulnerable to an attack and would have had no mechanism in place to detect a breach in a timely fashion. Famous Berkeley alumni include Apple cofounder Steve Wozniak, Google CEO Eric Schmidt, computer mouse inventor Douglas Engelbart, and MySpace cofounder Tom Anderson.

One imagines what kind of mischief one could achieve with access to those social security numbers. Fortunately for them, all graduated before 1999; Olympic gold medallist Natalie Coughlin, who graduated in 2005, and the '99 alumnus and Crown Prince of Norway, Haakon Magnus, if ever they visited university health services, may not have been so lucky.


About the Author:
SecurityProNews is a daily online and email publication focusing on internet security issues.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds