ShellCodeX Breach Report
University of California Data Breach
universityofcalifornia.edu
Verified breach
Accounts exposed
547,422
Breach date
24 Dec 2020
Added to tracker
20 Jun 2021
Data classes
10
What happened
In December 2020, the University of California suffered a data breach due to vulnerability in in a third-party provider, Accellion. The breach exposed extensive personal data on both students and staff including 547 thousand unique email addresses, names, dates of birth, genders, social security numbers, ethnicities and other academic related data attributes. Further analysis is available in Exploring the Impact of the UC Data Breach. The data was provided to HIBP courtesy of Cyril Gorlla.
Exposed data
Dates of birth
Education levels
Email addresses
Ethnicities
Genders
Job titles
Names
Phone numbers
Physical addresses
Social security numbers
Recommended actions
- Watch for targeted phishing emails referencing University of California โ attackers weaponise breach data quickly.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
- Exposed identity data raises identity-theft risk โ consider credit monitoring or a credit freeze.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP