According to the university, “The attack occurred in late December 2015, when an unauthorized person or persons obtained access to portions of computers that are part of the Berkeley Financial System (BFS). These criminals gained entry through a security flaw that UC Berkeley was in the process of patching. Law enforcement, including the FBI, has been notified.”
However the good news is that they have not found any evidence that data was stolen, but they are warning those 80,000 individuals anyway just to be safe. “The campus has no evidence that any unauthorized individual actually accessed, acquired or used any personal information.” They are also asking these individuals to keep an eye out for any anomalies and have offered credit protection services free of charge.
In a statement made by Paul Rivers, UC Berkeley’s chief information security officer, “The security and privacy of the personal information provided to the university is of great importance to us. We regret that this occurred and have taken additional measures to better safeguard that information.”