Attack on Accellion FTA software
The University of California was recently impacted by a global cybersecurity attack on Accellion FTA, software used by hundreds of private companies and public institutions for transferring files. An unauthorized party appears to have copied and transferred UC data by exploiting a vulnerability in the vendor’s platform. Accellion has publicly admitted to the data breach, which has impacted about 100 organizations across the country, with at least 25 suffering significant data loss.
We are working with federal law enforcement and external cybersecurity experts to investigate this incident, assess the information that may have been compromised and take additional measures to protect data. In the meantime, we have notified the UC community and offered one year of complimentary credit monitoring and identity theft protection.
Resources that have been published for the UC community:
- A March 31 letter about the Accellion attack
- Cyber tips for protecting one’s data
- An April 2 update urging the UC community to sign up for free credit monitoring and identity theft protection (arranged by the University)
The privacy of our community and the security of UC data are of paramount importance to the University. UC will continue to work with law enforcement and provide updates once we are able to disclose additional details of this ongoing investigation.