UC Office of the President (UCOP) is responding to a security incident involving UC employee information. UCOP learned that some personal data for UC employees was obtained through a cyber-attack on a UCOP system, and this was the source for the personal information released. The security team at UCOP is investigating this attack and has released the following statement:
We are working with UCOP to determine the scope of the incident and will reach out directly to any UC San Diego employees affected by this incident.
Beginning Monday, March 29, email accounts started receiving messages stating that their personal data had been stolen and would be released. While almost all of these emails were flagged as spam by the campus anti-spam system and not delivered, we have implemented a campus-wide filter to prevent these messages from being delivered to UC San Diego mailboxes. Similar messages were being received in email accounts for multiple campuses throughout the UC system and each UC location is taking similar measures.
Working with the other UC locations, we investigated and found that these emails contained a link to a public website where a sample of personal information from UC employees was posted. In the meantime, if you receive any suspicious email, please report it to us without clicking on any links or replying to the sender. Please forward these messages to abuse@ucsd.edu.
