Skip Menu

Return to Skip Menu

Main Content

OPM Data Breach

In response to the recent data breach that affected the U.S. Office of Personnel Management (OPM), the Virginia Tech Security Management Office (VT SMO) has established this reference page to assist any cleared employees who’s Personally Identifiable Information may have been compromised.
 
The VT SMO was first notified of the data breach on June 8, 2015 through a news brief on the Defense Security Service’s website.  At the time, the message indicated that the breach was limited to current and former federal employees.  Full text of the message can be found below:
 
“The U.S. Office of Personnel Management (OPM) recently became aware of a cybersecurity incident affecting its systems and data that may have exposed the personal information of current and former Federal employees.
 
Beginning June 8 and continuing through June 19, 2015, OPM will be sending email and U.S. mail notifications to current and former Federal employees potentially impacted by the incident. Email notices will be sent from opmcio@csid.com. Standard letters will be sent to individuals for whom OPM does not have an email address. The communication will contain information regarding services being provided at no cost to individuals impacted by the incident, including credit report access, credit monitoring, identity theft insurance, and recovery services. Additional information will be made available beginning at 8 a.m. CST on June 8, 2015 at www.csid.com/opm.” – www.dss.mil 
 
On June 16, the Information Security Oversight Office (ISOO) issued notice 2015-02 that provided additional information regarding the data breach, and for the first time stated that the systems that were compromised, “included those that contain information related to the background investigations of current, former, and prospective Federal government employees, as well as other individuals for whom a Federal background investigation was conducted” (emphasis added).  This additional information indicates that PII related U.S. government contractors who were subject to a background investigation for a security clearance may have been compromised.  The full ISOO notice is available below.  
 
If your information has been compromised, you will receive notification via the United States Postal Service.  Additional notifications may be provided via email from opmcio@csid.com as mentioned above.  PLEASE NOTE that this is the ONLY email address that is authorized to make these notifications.  If you receive notifications that your personal information may have been compromised from any other email address, please contact the VT SMO as soon as possible and do not provide any additional information or click on any links.  The VT SMO has been notified by several Counterintelligence organizations within the Federal government that this breach has led to an increase in these types of spear phishing attempts to further compromise your Personally Identifiable Information.
 
In addition to exercising caution when receiving emails regarding the data breach, the VT SMO is encouraging concerned employees to keep any eye on their credit accounts.  Many credit cards now offer free credit score reports and credit monitoring, in addition to various other organizations that provide paid credit monitoring services.  Everyone is also entitled to a free annual credit check from the three major credit reporting agencies.  Those reports may be obtained by visiting http://www.AnnualCreditReport.com.  The Federal government will be providing 18 months of free credit monitoring to any individuals who are notified that their personal information was compromised in the data breach.
 
Additional resources can be found below, and we will continue to update this page as pertinent information is received from the Office of Personnel Management and our other government partners.
 
Links: