Skip to main content
  1. Home
  2. Computing
  3. News

Office of Personnel Management and its CIO ruled responsible for 2014-2015 hacks

Jon Martindale
By

A hand on a laptop in a dark surrounding.
Image used with permission by copyright holder
The House Oversight and Government Reform Committee has now published its report on the 2014 and 2015 hacks of the Office of Personnel management (OPM), informing the world of who it believes was ultimately responsible. It’s laid the blame squarely at the feet of the OPM, claiming that had it implemented “basic cyber-hygiene,” neither breach may ever have happened.

Tens of millions of U.S. government employees and their close relations had personnel information revealed as part of the breaches in 2014 and 2015, when hackers managed to infiltrate the OPMs servers. It was real egg on the face for the administration, as well as damaging to the potential security of many of America’s most at-risk government employees.

Recommended Videos

We’re told that the first breach — which actually took place in 2013 but was not discovered until several months later in 2014 — allowed hackers to steal manuals and information on the types of data stored on the servers. It was the second breach that did the real damage however, stealing investigation data, personnel records and even fingerprints of millions of government employees.

While it was likely that security at the OPM had been breached, it wasn’t clear if it was entirely at fault for the hack, but that is what the Oversight Committee has decided. In its extensive report, titled (damningly): “The OPM Data Breach: How the Government Jeopardized Our National Security for More than a Generation,” the committee claimed that there were basic tools that could have been used to prevent breaches, but the OPM did not use them.

In fact, even the tool used to discover the breaches was not purchased by the OPM. It was undergoing a trial of the software on its live network and discovered the massive infiltration of foreign actors, which many believe were acting on behalf of the Chinese government.

Even then, the OPM didn’t pay up, purportedly returning the software after attempting to clear up the breach without incident (as per Ars Technica).

The report also takes aim at former OPM chief information officer Donna Seymour, who it claims lied during her testimony about the breaches, deliberately playing down the OPM’s lack of readiness and even claiming that the damage done was not as severe as it ultimately turned out to be.

Moving forward, the report recommends that all federal agencies have an appointed CIO who is not only competent and empowered to make necessary changes, but is also accountable for and failing in the organization’s digital security.

Other recommendations include fewer employees identifying themselves using social security numbers, as well as treating all employees as “outside” users with much more limited permissions.

Topics
Jon Martindale
Jon Martindale
Computing Coordinator
Jon Martindale is the Evergreen Coordinator for Computing, overseeing a team of writers addressing all the latest how to…
The best tablets in 2024: top 11 tablets you can buy now
Disney+ app on the iPad Air 5.

As much as we love having the best smartphones in our pockets, there are times when those small screens don't cut it and we just need a larger display. That's when you turn to a tablet, which is great for being productive on the go and can be a awesome way to unwind and relax too. While the tablet market really took off after the iPad, it has grown to be quite diverse with a huge variety of products — from great budget options to powerhouses for professionals.

We've tried out a lot of tablets here at Digital Trends, from the workhorses for pros to tablets that are made for kids and even seniors -- there's a tablet for every person and every budget. For most people, though, we think Apple's iPad Air is the best overall tablet — especially if you're already invested in the Apple ecosystem. But if you're not an Apple user, that's fine too; there are plenty of other great options that you'll find in this roundup.

Read more
How to delete a file from Google Drive on desktop and mobile
Google Drive in Chrome on a MacBook.

Google Drive is an excellent cloud storage solution that can be accessed from numerous devices. Whether you do most of your Google Drive uploading or downloading from a PC, Chromebook, or mobile device, there’s going to come a time when you’ll need to delete a file (or two). Fortunately, the deletion process couldn’t be more straightforward. We’ve also put together this helpful guide to show you how to trash your Drive content a couple of different ways.

Read more
Windows 11 might nag you about AI requirements soon
Copilot on a laptop on a desk.

After recent reports of new hardware requirements for the upcoming Windows 11 24H2 update, it is evident that Microsoft is gearing up to introduce a bunch of new AI features. A new report now suggests that the company is working on adding new code to the operating system to alert users if they fail to match the minimum requirements to run AI-based applications.

According to Albacore on X (formerly known as Twitter), systems that do not meet the requirements will display a warning message in the form of a watermark. After digging into the latest Windows 11 Insider Build 26200, he came across requirements coded in the operating system for an upcoming AI File Explorer feature. The minimum requirement includes an ARM64 processor, 16GB of memory, 225GB of total storage, and a Qualcomm Snapdragon X Elite NPU.

Read more