Stanford, UC warn of massive data breach
FacebookTwitterEmail
Stanford University said on April 2 that its medical school had suffered a data breach and that it was working with a cyber forensics firm to determine whose personal data was stolen. The University of California was also targeted.Paul Sakuma / Associated Press
Stanford University and the University of California are warning users of their computer systems to take extra caution following a nationwide cyber attack that affects its computer systems.
The two universities acknowledged their systems were part of the widespread security breach involving the Accellion file sharing system, in which an unknown number of university users’ files were compromised, subjecting them to possible demands for money to prevent the files’ contents from being revealed or destroyed.
Ransomware gang leaks data from Stanford, Maryland universities
By
Personal and financial information stolen from Stanford Medicine, University of Maryland Baltimore (UMB), and the University of California was leaked online by the Clop ransomware group.
The threat actors obtained the documents after hacking the universities Accellion File Transfer Appliance (FTA) software used to share and store sensitive information.
Data stolen in the attack targeting Stanford Medicine s Accellion server includes names, addresses, email addresses, Social Security numbers, and financial information, reported the Stanford Daily. We discovered the breach earlier this week when the hackers posted evidence that they had accessed a limited number of files in our system containing some personally identifiable information, UMB also told DataBreaches.net.
Photo: Sean Gallup (Getty Images)
A number of prominent U.S. colleges have become the newest, unlucky recipients of a cybersecurity migraine currently affecting dozens of organizations all over the world.
Advertisement
You may have heard something about Accellion the global cloud provider whose secure-file transfer product (called FTA) was beset by a hacking campaign back in December. If you haven’t heard about it, you can read a recent run-down of the whole trainwreck here. All you really need to know, though, is that a lot of organizations previously used Accellion’s FTA product to store and share data, it had
Reseller News
Join Reseller News
Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.Sign up now Those are the facts : Reserve Bank governor stands his ground on breach timeline
Orr: We never received notification until after we had a third-party malicious attacker inside of our system
Adrian Orr (Reserve Bank of NZ) Credit: Supplied
Reserve bank governor Adrian Orr told Parliament that while there were shortcomings in the bank s response to a major data breach, it had been let down by the vendor of its software.
Orr said the calendar year started with a thump with the malicious attack on its 20-year-old Accellion file transfer application, used to share sensitive documents with the banks and other entities it regulates.
Get Permission
Supermarket and pharmacy chain Kroger says PHI of 368,000 individuals was exposed in an Accellion hacking incident.
The list of healthcare organizations affected by recent vendor security incidents - including the recent attack against Accellion - continues to grow.
For example, the supermarket and pharmacy chain Kroger reports that more than 368,000 individuals protected health information was affected by the Accellion hacking incident, according to the Department of Health and Human Services HIPAA Breach Reporting Tool website, which lists health data breaches affecting 500 or more individuals.
In a recent statement, Kroger says Accellion notified the company that an unauthorized person gained access to certain Kroger files by exploiting a vulnerability in Accellion’s file transfer service.