NASA JPL Memo: Office of Personnel Management Cyber Incidents

From: JPL IT Security  [Jpl.It.Security – at – jpl.nasa.gov] 
Sent: Friday, July 17, 2015 3:05 PM
To: all.personnel – at – jpl.nasa.gov
Subject: Office of Personnel Management Cyber Incidents 

On July 10, 2015 the U.S. Office of Personnel Management (OPM) released their findings of the second interagency forensics investigation into the recent cyber incident involving Federal background investigation data as well as the steps it is taking to protect those impacted by one of the worst security breaches in U.S. history. 

At this time OPM has confirmed two separate (but related) cyber breaches. The first intrusion discovered in April 2015, compromised the personnel data of 4.2 million current and former Federal government employees.  It is our understanding that those impacted by this breach have already been notified. 

In early June, while investigating the first incident, OPM discovered additional information was stolen from a background investigation database.  This includes: 

– 19.7 million background investigation records of current, former, and prospective federal employees and contractors, as well as 1.8 million non-applicants, (primarily spouses or co-habitants of applicants).

– Sensitive information, such as the Social Security Numbers (SSNs) of 21.5 million.

– Findings from interviews conducted by background investigators and approximately 1.1 million include fingerprints.

– Usernames and passwords that applicants used to fill out their background investigation forms.   

If you underwent a background investigation through OPM from 2000 or thereafter (which occurs through the submission of forms SF 86, SF 85, or SF 85P for a new investigation or periodic reinvestigation), the OPM says there is a high likelihood that anyone who filled out one of those SF forms has had their information compromised.  

We understand the OPM will soon begin to send notification packages, as well as provide a comprehensive suite of monitoring and protection services for the 21.5 million background investigation applicants, spouses or co-habitants that have been affected by this breach.  A private-sector firm specializing in credit and identity theft monitoring will also assist those impacted by this incident.   

OPM recently released an online incident resource center located at https://www.opm.gov/cybersecurity. The site provides the latest information regarding these incidents and directs individuals to training materials, best practices, frequently asked questions as well as tools that can to help secure your data and protect against possible identity theft. 

OPM recognizes the importance of providing individual assistance to those impacted by this breach and we understand the OPM will be establishing a call center to address all questions and concerns. In the interim, individuals are encouraged to visit https://www.opm.gov/cybersecurity.  Please note individuals will not be able to receive personalized information until notifications begin and the call center is opened.  Corbin MillerChief Information Security OfficerJet Propulsion Laboratory