UC Berkeley Alerts Students to Breach
- By admin aapc
- In Compliance
- May 14, 2009
- Comments Off on UC Berkeley Alerts Students to Breach
Officials at the University of California, Berkeley are notifying more than 160,000 people that their personal information, which dates back to 1999, may have been stolen after hackers attacked databases in the student health center. The accessed information is used for billing, self-reported health histories, and immunization records. UC Berkeley officials say the hackers did not access medical records.
Notifications are being sent to former UC Berkeley students who had University Health Services coverage or received services. The campus is also sending notification letters to approximately 3,400 Mills College students who received, or were eligible to receive, health care at UC Berkeley.
“The university deeply regrets exposing our students and the Mills community to potential identity theft,” said Shelton Waggener, UC Berkeley’s associate vice chancellor for information technology and its chief information officer. “The campus takes our responsibility as data stewards very seriously. We are working closely with law enforcement and information security experts to identify the specific causes that may have contributed to this breach and to implement recommendations that will reduce our exposure to future attacks.”
Read the May 8 news release in its entirety on the UC Berkeley Web site.
- Do You Have a Documentation Emergency? - April 3, 2023
- Correctly Identify Low Back Pain - March 1, 2023
- How to Optimize the RCM Process - February 1, 2023
“Personal information dating back to 1999” on file at the student health center seemingly WOULD include medical record information. What or who is responsible for the security of the center’s database? This kind of security breach is the greatest fear related to implementations of electronic health records and the reason for delay of this emerging technology which will save lives, reduce medical costs, and assist in providing quality healthcare for all Americans.
Is this a violation of the HIPAA law?