A new report from the New York Times says Chinese hackers infiltrated databases in the Office of Personnel Management in March.
It’s unclear just how much data was accessed before the hackers were detected and blocked.
Of utmost concern, the Office of Personnel Management “oversees a system called e-QIP, in which federal employees applying for security clearances enter their most personal information, including financial data.” (Via New York Times)
The Times says e-GIP also houses other sensitive information, like foreign contacts and past drug use.
According to the Guardian, there is one potential gauge for the data breach. Because the attack was not announced, it may shine some light on what information was accessed.
A spokeswoman for the Obama administration said, “We have advocated that businesses that have suffered an intrusion notify customers if the intruder had access to consumer personal information.”
A writer for the Register says, There’s also a chance the incident, and the news of it, is more sabre-rattling. China and the USA regularly exchange allegations of digital skulduggery and protest loudly that such activities aren’t very polite or kind.”
And ZDNet points out “Relations between China and the United States have been strained of late due to constant accusations that each side is launching cyberattacks — or using the idea as a propaganda tool — in order to harm the other.”
It’s important to note one U.S. official said it wasn’t clear if the attack was part of Chinese government efforts, just that it had been traced to China.
The report suggests there was no reason to believe personally identifiable information for employees was compromised.