OPM Breach: How Officials Missed a Second Hacker | Hacked: Hacking Finance


OPM Breach: How Officials Missed a Second Hacker

Posted on .

OPM Breach: How Officials Missed a Second Hacker


This article was posted on Thursday, 13:43, UTC.

US officials were too focused on purging a hacker from government’s computers after closely monitoring the hacker’s online movements for months and were about to expel him that they failed to realize that there was another hacker entirely.

// -- Discuss and ask questions in our community on Workplace. Don't have an account? Send Jonas Borchgrevink an email -- //

This is according to a congressional report referenced in a Guardian publication which provided previously undisclosed details of missed opportunities before the break-in at the Office of Personnel Management to expose security clearances, background checks and fingerprint records.

A privacy and information security expert,  Michael Adams, described the OPM data breach as involving the greatest theft of sensitive personnel data in history.


// -- Become a yearly Platinum Member and save 69 USD and get access to our secret group on Workplace. Click here to change your current membership -- //

The intrusion, which was earlier blamed on the Chinese government, compromised personal information of more than 21 million current, former and prospective federal employees. It also led to the resignation of the OPM director, Katherine Archuleta.

The report by the House committee on oversight and government reform blamed the personnel agency for failing to secure sensitive data despite warnings for years that it was vulnerable to hackers. It concluded that the hacking could have been prevented if the agency had put basic security controls in place and acted accordingly after the previous break-in March 2014 when a Department of Homeland Security team noticed suspicious streams of data leaving its network at odd hours.

Also read: The CIA Pulled Spies from Beijing after OPM Breach

After the first hack, the OPM worked with the FBI, National Security Agency and others to monitor the hacker to better understand his movements. They developed a plan to expel the hacker in May 2014 through several means including resetting administrative accounts, building new accounts for users who had been compromised and taking offline compromised systems.

But unknown to them, a second intruder posing as an employee of a federal contractor had infiltrated the system weeks before the planned expulsion. The hacker used a contractor’s credentials to log into the system, install malicious software and create a backdoor to the network. This allowed him to move unchecked through the system for months and stole sensitive security clearance background investigation files, personnel files and, ultimately, fingerprint data.

The breach was detected in April 2015.

Though the congressional report said OPM officials misled the public about the scope of the breach and also by saying the two breaches were unrelated, the agency’s acting director, Beth Cobert, said in a statement that OPM disagrees with much of the report, which she said “does not fully reflect where this agency stands today”.

Images from Shutterstock.

Important: Never invest money you can't afford to lose. Always do your own research and due diligence before placing a trade. Read our Terms & Conditions here.

Feedback or Requests?

Samburaj Das

Samburaj Das

Samburaj is the contributing editor at Hacked and keeps tabs on science, technology and cyber security.

There are no comments.

View Comments (0) ...
The team:
Dmitriy Lavrov
Dmitriy Lavrov is a professional trader, technical analyst and money manager with 10 years of trading experience. He covers Forex, Commodities and Cryptocurrencies. He is among the top 10 most Read More
Jonas Borchgrevink
Jonas Borchgrevink is the founder of Hacked.com and CryptoCoinsNews.com. He is a serial entrepreneur, trader and investor. He shares his own personal journey on Hacked.com. // -- Discuss and ask Read More
Mate Csar
Trader and financial analyst, with 10 years of experience in the field. An expert in technical analysis and risk management, but also an avid practitioner of value investment and passive Read More
Mati Greenspan
Senior Market Analyst at Etoro.com. // -- Discuss and ask questions in our community on Workplace. Don't have an account? Send Jonas Borchgrevink an email -- // Important: Never invest Read More
Rakesh Upadhyay
Rakesh Upadhyay is a Technical Analyst and Portfolio Consultant for The Summit Group. He has more than a decade of experience as a private trader. His philosophy is to use Read More
Pamela Meropiali
Account Manager
Pamela Meropiali is responsible for users on Hacked.com. // -- Discuss and ask questions in our community on Workplace. Don't have an account? Send Jonas Borchgrevink an email -- // Read More
Joseph Young
Joseph Young is a finance and tech journalist & analyst based in Hong Kong. He has worked with leading media and news agencies in the technology and finance industries, offering Read More
Apple’s iPhone is by far the most popular smartphone, with…