digg

Facebook Connect Join Digg About
See the original image at news.cnet.com

UC Berkeley Computers Hacked, 160,000 at Risk

news.cnet.com Hackers broke into University of California, Berkeley's health services center computer and potentially stole the personal information of more than 160,000 students, alumni, and others, the university announced Friday.

Who dugg this? Made popular May 9, 2009

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

56 Comments

show profanity settings
expand all
  • swraman, on 05/09/2009, -1/+28great. now im graduating into a horrible economy AND my credits gonna suck
  • abukalamdanny, on 05/09/2009, -0/+26Berkeley, the university which spits out thousands of computer geeks every year??
  • phenom2k7, on 05/09/2009, -0/+19wow, Berkeley is a huge score
  • inactive, on 05/09/2009, -0/+12OR you could get a new SSN. Of course, you need to prove that your existing one is being used, but you could and should inquire about your options with your local Social Security office ASAP; don't just assume your mother is an expert in the american Social Security system.
  • unic0rn, on 05/08/2009, -1/+11It's quite sad how such important and sensitive data is poorly secured. :(
  • lilricky, on 05/09/2009, -3/+12Who the heck puts this data on a computer with access to the internet? Are they that stupid???
  • PrestoVivace, on 05/09/2009, -1/+10Clearly organized crime has gotten into the information selling business.
  • Logal, on 05/09/2009, -2/+9Stole 160,000 records... and an awesome granola recipe.
  • Krissam, on 05/09/2009, -0/+6one would actually think Berkeley would use BSD.
  • martynda, on 05/09/2009, -0/+5Did you get your undergrad at ITT Tech? It's much easier to find jobs graduating from a higher ranked university. All things being equal (or even unequal), you can be assured that a candidate from Berkley will be taken over someone from University of Phoenix. I know engineering students who graduated from GaTech with their expected C average who get taken over 4.0 students from most other universities.
  • emer, on 05/09/2009, -2/+7To help people understand.

    They didn't hack in to UC Berkeley, but rather a UC Berkeley department. In this case the health services department. The problem universities often have is that departments will often build their own silo of servers using staff who have very little experience other then building/repairing computers. If you read the article, you'll see that they put the private database on the same host as the public webserver (fundamental security no no).

    Universities need to put more focus on centralizing resources instead of letting each group do "their own thing". The benefits are increased security and often decreased costs.
  • aweasel, on 05/09/2009, -3/+7my ***** got hacked in this. mom says now i gotta freeze my credit every 90 days for the rest of my life, because all 160,000 names/SSNs are now commodities that will be traded around and sold off until we die.

    god damnit.
  • compgeek, on 05/09/2009, -4/+8I know everywhere has security flaws but come on the place that invented BSD? Why the ***** are they using Windows and SQL? One would think they would use BSD itself I'd bet that if they had used BSD and one of the linux database softwares this wouldn't have happened. not being an anti MS zealot here but let's be honest unix is FAR more secure than windows could ever hope to be
  • quomen, on 05/09/2009, -0/+3Then why should any of these 160,000 people care?
  • swraman, on 05/09/2009, -0/+3I deal with a branch Campus IT since im a webmaster for the school.

    All the servers ive used are FreeBSD, i guess since it was developed by our guys.
    All the databases Ive used are PostgreSQL, again since its roots are at UC Berkeley.
    I wouldnt think that these were windows servers. But, again you cant be sure unless you work for them.
  • frequentFlyer, on 05/08/2009, -3/+6And Berkeley is supposed to be a mecca for computer science minds.
  • cornfeed, on 05/09/2009, -0/+3Why would anyone care about your Dad's hip replacement? Well, let's see, his social security number is attached, insurance status and account information, billing information and personal banking information, direct health and treatment information, and a host of other little bits and pieces of information that can be strung together and used.

    Now, your next.
  • zomgflamer, on 05/10/2009, -0/+2To add, internship will supersede utter virgins(industry) as well if you go to cheap arse school. After all, its mostly connections that will get you a nice job.
  • fabriciom, on 05/09/2009, -0/+2Its easier to destroy than to create. Thats a fail.
  • stutimandal, on 05/09/2009, -3/+5Computer science minds don't design health services website.
  • swraman, on 05/09/2009, -0/+2and who's #2 on that list?
  • DiggOrNotToDigg, on 05/09/2009, -0/+2Article doesn't say they are using Microsoft Products. Where did u get info from? Structured Query Language(SQL) can be used with any database servers like Oracle, Microsoft SQL, mySQL, postgreSQL, etc. I personally don't think Berkley uses Microsoft SQL servers.
  • swraman, on 05/09/2009, -0/+2im guessing it didnt have access to the internet. I manage a couple of not-so-important sites on the berkeley.edu domain, and to access the server i have to ssh into a machine on campus, and from that machine ssh into the server as it is only acessable locally.
    Im sure it wasnt viewable ont eh internet, but the hackers probaly found ways to get around that.
  • quomen, on 05/09/2009, -4/+5Now imagine the risk of centralizing all of the United States health records.
  • frequentFlyer, on 05/11/2009, -0/+1"a" mecca. Not "the" mecca.
  • MadHarvey, on 05/09/2009, -0/+1Yeah... but, ooooh, wouldn't you LOVE to get one of those Gibsons?

    *rubs nipple*
  • stutimandal, on 05/09/2009, -4/+5Beats me why Health Services data is kept online!!!

    I got a mail from them yesterday about this :(
  • swraman, on 05/09/2009, -1/+2all the servers ive had to use through the school are FreeBSD.
  • theblacknight, on 05/10/2009, -0/+1It seems to me we already have the risk but none of the benefits.
  • fabriciom, on 05/09/2009, -3/+4Ever herd of MIT?
  • inactive, on 05/10/2009, -0/+1It's no big deal. The left wants all medical records in one database. This has to be expected and it's only a bunch of liberal medical records any way, who cares? They knew this was going to happen and still wanted it. I say you get what you want, especially if you are the left. No one deserves it more than they do. Hope no illegal IDs are attached to these in some fraud scheme, that would really be better than they could have hoped for.
  • varchar255, on 05/09/2009, -0/+1Completely agree. I used to think grad school was what mattered and the specific undergrad school didn't matter as much, but that was before (as an undergrad) I went through job interviews at some of the top tech companies (Google and Microsoft included) and found that just about every single one of the other interviewees was from a well-known engineering school.

    At one company they had signs on our individual interview rooms which had our names and our schools. How much do you want to bet the guy coming in to interview you is going to be influenced right off the bat?
  • zomgflamer, on 05/09/2009, -0/+1Obviously, that was my point. I mentioned if you go to cheap school for undergrad then you go to grad school at top schools than you are a champion.
  • lilricky, on 05/13/2009, -0/+1Um, if you can ssh into a machine from the internet, its connected. I'm saying they need to physically separate it from the internet.
  • stayathomejobs, on 05/10/2009, -0/+1I'm surprised more of this doesn't occur - especially now
  • swraman, on 05/09/2009, -0/+1umm...simply put its not the same. you can easily find this out by talking to friends/persons who go to different universities.
  • JessieLilley, on 11/20/2009, -0/+1Well, with the 32% increase they approved today, and the courses, services and staff that are going to be cut, I wouldn't count on them focusing on much more than counting their money.
  • lolupissed, on 05/10/2009, -0/+1What the ***** do your dating tendencies have to do with this article, whore?
  • backmufucka, on 05/09/2009, -1/+1What a crying shame. It's time to get tooled up.
  • PistolStar1, on 05/15/2009, -0/+0This situation, in agreement with the rest of you, is pretty scary. To think with the idea of centralizing the health care system, it is a question of how are they planning on protecting the information. There is just so much to protect, and so many holes to cover, so as not to let any hackers inside. As displayed this feat is not an easy one. I am surprised that they did not have any requirements for their login controls, and security controls, that would require difficult access to the information. It just seems they did not have the right solution in place for a centralized information location, especially one of that size. There is a possible solution found here at http://www.pistolstar.com, where companies can avoid this awful scenario. Hopefully the mass amount of identity theft was not too massive, and in these economic times will not hurt those effected too severely.
  • inactive, on 05/09/2009, -4/+4Yet another example of a stupid fanboy spewing crap.
  • brunoa, on 05/11/2009, -0/+0All that matters are the connections your major department has. You're more likely to find professors who have either worked at place x, keep ties with people who work at place x, advisers know hiring practices and recruitment processes specifically and therefore more likely to get actual recruiters on site, and have a good hiring rate per graduating year at place x.

    Undergrad degrees are generic, and where you went only gets you so far.
  • andrewmerica, on 05/10/2009, -0/+0Apparently everything Made in China is faulty.
  • CalebMix, on 05/12/2009, -0/+0I wonder if they were running XP.
  • ucbstudent, on 05/10/2009, -0/+0Hi, I'm a UCB student and received the email. I called to hotline and they confirmed my name was on the list. This happened to me before in 2004 when a laptop was stolen at UCB with all the graduate student info (social security #s, etc.). If a class action lawsuit has not already been started, I want to start one.

    I have been dealing with identity theft and it is a serious life consuming pain. This is the 3rd time this has happened since I've been at UCB. This is RIDICULOUS!!

    Contact me at UCBClassActionLawsuit@gmail.com
    If one has already been started, please let me know, so I can join. Thanks!
  • ucbstudent, on 05/10/2009, -0/+0Getting a new social number doesn't solve anything. Your old number stays linked to the new one. I've been dealing with identity theft for a while. And it is a good idea to freeze it every 90 days, or to do the 7 year freeze. It is a pain in the rear.
  • inactive, on 05/09/2009, -4/+3 The people who will really use your personal information to harm you already have it, hackers are the least of your worries.
  • InLovewithPeace, on 05/09/2009, -3/+1that sux...nothing is private anymore...i miss the good old days...it seems technology and Universities are just good for nothing...honestly I have dated guys with the fancy degrees but they are still not happy...the happiest guys and best boyfriends I have had did not have any College degree...mostly contruction workers, artists, musicians, and sculptors...these were the most secure and content people i have known...although furthering your education for the sake of philanthropy is a good idea...like if i went to med school i would want to work abroad and help people in 3rd world countries...you have to expand your education for the right reasons and then you will have good karma
  • Fetching more discussions...
    Show 51 - 58 of 58 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.