The University of California has warned its students and staff that a cyber-data hijacking group may have stolen and released their personal data and that of hundreds of other schools, government agencies, and businesses across the country. A cybersecurity attack targeted a vulnerability in Accellion, a third-party vendor used to securely transfer files, the university said in a statement Wednesday. “We understand that those behind this attack have posted online screenshots of personal information, and we will notify members of the UC community if we believe their data was leaked in this manner,” the university said. The hacker (s) have also been sending threatening bulk emails threatening to release data “in an attempt to scare people into giving them money,” the statement said. Cyber attack affects around 300 organizations In an update on Friday, the university system said that the cyber attack affected some 300 organizations, “including universities, government institutions and private companies.” Other schools, including Stanford University School of Medicine and Yeshiva University in New York City, have reported that Social Security numbers and financial information of students and employees were stolen and that some were posted online. The information was obtained in December and January when hackers exploited a vulnerability in a 20-year-old Accellion file transfer service, according to multiple reports. However, some organizations said they only recently became aware of the breach. The Baltimore Sun reported Thursday that private information from staff members and students at the University of Maryland, Baltimore was posted online this week. The school said a group of hackers known as Clop gained access to Accellion in December, the Sun said. The University of Colorado and the University of Miami reported that the files were accessed in January and included personal data and some health data, studies and research. The Washington State Auditor’s Office reported last month that information on nearly 1.5 million job seekers had been stolen. Accellion issued a statement in March saying it had closed “all known vulnerabilities” and that no new ones had been found. Large-scale cyberattacks and the pursuit of massive payments have affected several organizations in recent months. In an unrelated attack, the computer system of one of the largest school districts in the country was hacked by a criminal gang that encrypted the district’s data and demanded a $ 40 million ransom or would erase the files and post the information online. student staff and employees. The Fort Lauderdale, Florida-based Broward County Public Schools said in a statement Thursday that there is no indication that personal information was stolen and that they did not make any extortion payments to the hacker gang.