From: FCW
By Sean Lyngaas
A culture of poor cyber hygiene plagues the Office of Personnel Management and “likely aided the adversary” in the large-scale hack of the agency, according to a Department of Homeland Security and FBI report obtained by FCW. A lack of strong IT policies leaves OPM “at high risk for future intrusions,” investigators concluded.
“Convenience and accessibility [have] been prioritized over critical security practices,” states the Dec. 23 “cyber alert,” distributed to cleared contractors by the Defense Security Service on behalf of DHS and the FBI. “Inadequate” patching of OPM’s sub-system is “symptomatic of a greater patching problem” within the agency, the document states. The breach, revealed in June 2015, led to the loss of more than 21 million personnel records.
Leave a Reply