Homeland Security Data Breach Affects 240,000 Federal Employees
Attivo Networks Blogs

Homeland Security Data Breach Affects 240,000 Federal Employees, Plus Witnesses and Interviewees

The Department of Homeland Security (DHS) on Wednesday confirmed a data breach involving the personally identifiable information of more than 240,000 current and former DHS employees.

The agency disclosed few details about how the information was compromised, though it stressed that the data was not stolen in a cyberattack, nor was it exposed to malicious activity. Instead, the files were discovered in the possession of a former DHS Office of Inspector General (OIG) employee during an ongoing criminal investigation last May, the agency said.

The identity of the former employee was not disclosed, and the focus of the criminal investigation is unknown.

DHS employees whose information had been compromised—names, Social Security numbers, dates of birth, positions, grades, and duty stations—received notification letters today, the agency said.

Why did it take roughly seven months to notify the affected employees? “The investigation was complex given its close connection to an ongoing criminal investigation,” the agency said on its website. “From May through November 2017, DHS conducted a thorough privacy investigation, extensive forensic analysis of the compromised data, an in-depth assessment of the risk to affected individuals, and comprehensive technical evaluations of the data elements exposed.”

Read more>>>

Share on:

Free Active Directory Assessment

Get Visibility Into Privilege And Service Account Exposure

For a limited time, Attivo Networks is providing free Active Directory Security Assessments to demonstrate how ADAssessor provides unprecedented and continuous visibility to AD vulnerabilities.

Try Our Endpoint Detection Net (EDN) for Free

FAST AND EASY

Free use offer of our Award-winning security solution to prevent attackers from lateral movement, credential theft, and privilege escalation, fast and easy.

Newsletter Signup

    Yes, please opt me in to receive your quarterly newsletter, event invitations, and product updates.

    I understand that I can opt out at any time, and can refer to Attivo Networks Privacy Policy for more information.
  • This field is for validation purposes and should be left unchanged.

ADSecure 90-Day Free Trial

GET PROTECTION AGAINST UNAUTHORIZED ACCESS TO ACTIVE DIRECTORY

  • Hide and deny access to AD objects
  • Get alerted on unauthorized queries
  • Attack details easily viewable in dashboard
  • Your data remains on-premise

RSS

Leave a Comment

Your email address will not be published. Required fields are marked *

five × 3 =

Ready to find out what’s lurking in your network?

Scroll to Top