Cyber Incident Victim: University of California, Davis

On or around June 20-21, 2020, the University of California, Davis, experienced a racially motivated cyberattack involving mass-distributed malicious emails. Thousands of UC Davis email accounts received messages disguised as mortgage pre-qualification confirmations from Atlanta-based Equity Prime Mortgage. The emails contained explicit racist content, including the statement "a lender for whites only. That’s how we have such low rates!," accompanied by a racial slur and a reference to lynching. University cybersecurity systems intercepted and blocked the majority of these messages before widespread delivery. UC Davis officials publicly confirmed the incident on June 23, characterizing the messages as "racist, abusive and violent." The attack formed part of a broader campaign targeting at least five other major U.S. universities: Harvard, Stanford, Columbia, Michigan, and Iowa State.

UC Davis Chief Information Security Officer Cheryl Washington immediately reported the incident to the FBI and initiated internal reviews to strengthen email filtering protocols. The university characterized the event as a malicious assault requiring coordinated law enforcement response. Forensic analysis revealed Equity Prime Mortgage was itself compromised, with attackers exploiting the lender's systems to launch the campaign. The mortgage company collaborated with federal investigators to trace the attack origin. While UC Davis successfully prevented most messages from reaching inboxes, the incident exposed vulnerabilities in academic email systems to socially engineered hate content. No data breaches or network compromises beyond the email campaign were reported by UC Davis. The coordinated targeting of multiple institutions suggested a deliberate attempt to amplify racial division during nationwide social justice protests occurring contemporaneously.