(UCSD SOM) became aware of the exposure on September 7, and took immediate steps to secure it. They do not indicate how they first became aware of it. Nor do they indicate for how long the file was exposed or how many people had information in the file.

According to a letter being sent to those affected, a copy of which was submitted to the California Attorney General’s Office

The electronic file involved was a Graduate Medical Education (GME) office file containing the first and last names of UCSD SOM trainees, their social security numbers, and an internal UC San Diego index number.

In response to the breach, UC San Diego is reviewing and improving processes for handling data, and we has reiterated to staff the importance of carefully handling confidential information to protect privacy. They are also offering those affected identity theft protection through IDExperts.