Drip Drip Drip
It has been over a week now since word was released of the massive cyber breach at the Office of Personnel Management. At that time government officials claimed that personal records of over 4 million federal employees had been exposed to hackers. Those records of personally identifiable information (PII) included names, current and former addresses, birthdates and social security numbers. We then learned that some of that information had found its way into the ‘dark net’ and was being offered for sale. We also learned that the breach had been discovered via the “Einstein’ intrusion detection system back in April.
Finally on Friday came word from government sources that a second breach had been discovered at OPM that was even more alarming. According to reports information relating to government form SF-86 may have also been hacked by the intruders. Data from that 127 page form includes passport numbers, security clearances and agencies, countries traveled to, medical information, terrorist connections, civil court actions, personal debts, gambling/drug/alcohol addiction, bankruptcy, domestic violence, police records, mental disorders, foreign business and contacts, benefits from foreign countries, foreign property owned, foreign investments, close or continuing contact with a foreign national, foreign relatives, marital status, names and addresses of friends, military service (including serial number), and employment and school records.
Two things can be surmised from these reports. First, the breach appears to have been far greater than originally reported and the sensitive data on untold tens of millions of people may have been exposed. Second, the information that is ‘mined’ from this massive breach, especially from SF-86 can and will be used to connect the dots in the ongoing process to ‘prep the battlefield’ in preparation for future actions by foreign nations. Some journalists are calling this massive cyber attack a ‘Pearl Harbor’ event….but others feel we haven’t seen anything yet.
If you are interested in learning more about this topic, visit my blog.