• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • UC Berkeley
  • Berkeley Engineering
  • EECS

Header Search Widget

IRIS

Instructional & Research Information Systems

  • About Us
  • Get Started
  • Get Help
  • FAQ
    • FAQ: Accounts
    • FAQ: EECS Slack
    • FAQ: File Storage
    • FAQ: Hardware
    • FAQ: MacOS
    • FAQ: Mail
    • FAQ: Mailing Lists
    • FAQ: Network
    • FAQ: Security
    • FAQ: Unix
    • FAQ: Web
    • FAQ: Windows
  • Services
    • Accounts
    • Backups
    • E-mail
    • EECS Login Servers
    • File Storage
    • Infrastructure
    • Mailing Lists
    • Network
    • Printing
    • Room Reservations
    • Security
    • Software
    • Unix
    • Web
  • Policies
  • Forms
    • System Registration/Update
    • Account Request Form
    • Network Problem Report
    • SSL Certificate Request
    • All Other Forms
  • Rates

Possible Security Breach

June 6, 2007 by Mark Kraitchman

The UC Berkeley campus received an FBI report with evidence that
multiple computer accounts and systems was compromised in the time
frame of 2003-2005. The campus SNS (System and Network Security)
group believes that all evidence from the FBI report is consistent
with this being the UC Berkeley portion of the legacy of the
world-wide cyber attack by the infamous “Stakkato” alias. For more
information about Stakkato:

http://en.wikipedia.org/wiki/Stakkato
http://www.nsc.liu.se/~nixon/stakkato.pdf

SNS forwarded information to EECS from the FBI report with what we
have identified as a copy of the department NIS domain
passwd file from November 18, 2004. This date appears to
correlate with activity via a compromised non-privileged user
computer account in EECS (this unauthorized activity was
presumably by Stakkato). Since Stakkato had access to very
powerful computing, Stakkato could have used “brute force” to guess
UNIX passwords.

Filed Under: News

Primary Sidebar

IRIS Service Status

Green
We have 0 Active Incidents, and 0 Scheduled Maintenances noted.

IST Service Status

Outages to campus services are listed at berkeley.statusdashboard.com.

Recent Highlights

IT Support During Winter 2022 Energy Curtailment

December 7, 2022 by Lars Rohrbach

Upcoming Change to EECS Firewall Handling of SSH

September 22, 2022 by Lars Rohrbach

  • About
  • Contact
  • PRIVACY
  • ACCESSIBILITY
  • NONDISCRIMINATION

© 2022–2023 UC Regents  |  Log in