House GOP Panel Blasts OPM Over Breach

...

A new report by the House Oversight Committee lambastes the Office of Personnel Management for "decades of mismanagement" that allowed last year's massive security breach.

In the summer of 2015, hackers stole the personnel files of 4.2 million former and current government employees. The cyber attackers also pilfered security clearance background investigation details on 21.5 million individuals and fingerprint data for 5.6 million people.

The report, which reads a bit like a crime novel, was issued today by Republican members of the committee, who claim the potential damage caused by the breach "cannot be overstated, nor will it ever be fully known."

"The longstanding failure of OPM's leadership to implement basic cyber hygiene, such as maintaining current authorities to operate and employing strong multi-factor authentication, despite years of warnings from the Inspector General, represents a failure of culture and leadership, not technology," the group said.

Following an announcement of the breach, OPM Director Katherine Archuleta resigned from her position in July; Beth Cobert, US chief performance officer and deputy director for management at OPM, stepped in as acting director.

Now, Cobert is hitting back at the House Committee, writing in a blog entry that the claims do not "fully reflect where this agency stands today."

In the year since the breach went public, OPM tightened its security and strengthened its IT infrastructure, and is currently in the process of enhancing its Web-based application system.

"The cybersecurity incidents at OPM provided a catalyst for accelerated change within our organization," Cobert said. "Throughout this agency, management has embraced cybersecurity as a top priority.

"We hope Congress will also continue to support our efforts and provide us with the resources we need to continue to strengthen our cybersecurity posture now, and into the future," she added.

Democratic Committee staff on Tuesday published a 21-page pre-emptive memo, suggesting the Republican report contains inaccuracies.

"The most significant deficiency uncovered during the committee's investigation was the finding that federal cybersecurity is intertwined with government contractors, and that cyber requirements for government contractors are inadequate," the statement said.

A number of federal agencies have been the victims of cyber attacks in recent years, from the State Department and US Postal Service to the National Weather Service and Energy Department.

Categories
GAMES
0 Comment

Leave a Reply

Captcha image


RELATED BY

  • 5300c769af79e

    Black Friday Deals Week Daily Round-Up: November 23

    Dealing with all of the noise can be tough, so we thought this year, we’d try something a bit different.In today’s list of deals, it’s looking a lot like yesterday’s list with the addition of Google Home dropping to the bargain price of $99, Nest products getting back to $50 off, and the Honor 8 at $289.
  • 5300c769af79e

    Gartner: IT Spending Will Hit $3.5 Trillion In 2017

    That's an increase of about 3% over 2016, with much of that money going toward software and services.Global IT spending is slated to rise slightly in 2017, with enterprises looking to invest about $3.
  • 5300c769af79e

    Galaxy S8 Battery Includes 'No Dogs' Warning Label

    After the disaster that was the Galaxy Note 7, Samsung had to get the Galaxy S8 right, which meant lots of testing, especially where the battery is concerned.The Galaxy S8 and S8+ do not explode, in fact they are both great handsets.
  • 5300c769af79e

    Intelligence Driven Defense Scorecard

    Download Defining Cybersecurity Maturity Across Key DomainsWhen assessing an organization's cybersecurity maturity, Leidos examines 15 key evaluation domains of an organizations operations and rates them on a four point scale.What does success look like?