U.S. Has Yet to Notify 21.5 Million Data Breach Victims

U.S. Has Yet to Notify 21.5 Million Data Breach Victims
Image credit: Shutterstock

Grow Your Business, Not Your Inbox

Stay informed and join our daily newsletter now!
2 min read
This story originally appeared on Reuters

Two months after discovering that sensitive personal information on 21.5 million Americans was compromised in a hack of government databanks, none of those affected has been officially notified, government officials said on Tuesday.

The officials from multiple agencies, who are familiar with an investigation into the breach, said the Office of Personnel Management (OPM), which oversaw the data, is working with other agencies to set up a system to inform the victims.

One official at OPM, who declined to be identified, said that because of the complicated nature of the data and the fact that government employees and contractors often move among different agencies, it would be weeks before a mechanism was in place.

The official said the government was trying to establish a centralized system rather than leave the notification to separate agencies. OPM is expected to hire an outside contractor but has not yet sought bids for the work.

The head of the OPM, Katherine Archuleta, resigned last Friday after coming under heavy fire in Congress over the security breach, which was disclosed in May, and an earlier OPM hacking that was made known in April. Government officials suspect Chinese hackers were responsible.

Almost all the 4.2 million people exposed in the earlier breach, which affected only basic job application data, have been notified, a U.S. official said. They have been invited to enroll in an identity protection program.

The much larger breach discovered in May and made public last week involved much more sensitive personal information OPM gathered for security clearances investigations of current, former and prospective federal employees and contractors.

They included 19.7 million contractors and employees who applied for security clearances, and 1.8 million "non applicants" whose personal data was included in security clearance applications, such as spouses.

OPM has said that anyone who underwent a security clearance background investigation through OPM in 2000 or afterwards is likely affected by the latest data breach.

There is some overlap among the individuals whose data was compromised in the two breaches.

(Reporting by Mark Hosenball in Washington; Editing by Lisa Shumaker)

More from Entrepreneur

Our Franchise Advisors are here to help you throughout the entire process of building your franchise organization!
  1. Schedule a FREE one-on-one session with a Franchise Advisor
  2. Choose one of our programs that matches your needs, budget, and timeline
  3. Launch your new franchise organization
Make sure you’re covered if an employee gets injured at work by
  • Providing us with basic information about your business
  • Verifying details about your business with one of our specialists
  • Speaking with an agent who is specifically suited to insure your business
Try a risk-free trial of Entrepreneur’s BIZ PLANNING PLUS powered by LivePlan for 60 days:
  • Get step-by-step guidance for writing your plan
  • Gain inspiration from 500+ sample plans
  • Utilize business and legal templates
  • And much more

Latest on Entrepreneur