Slashdot Mirror

← Back to Stories (view on slashdot.org)

SF86 Data Captured In OPM Hack

Posted by timothy on from the now-everyone-will-have-to-go-to-quintiple-agents dept.

Etherwalk writes: The security clearance process in the United States includes filling out the 127-page SF86 form, which includes things like the citizenships of all your relatives and housemates, foreign contacts and financial interests, foreign travel, psychological and emotional health, illegal drug use, and many other matters. The recent breach by the Chinese Government apparently included that information for all executive employees up to cabinet level. It's pretty much a gold mine for intelligence work and social engineering of any kind.

3 of 173 comments (clear)

  1. Bah! Media! by quonsar · · Score: 5, Insightful

    So, what exactly do they mean by "breach". Someone got into some systems? Once there, did they take copies of data? That's a lot of data. Why didn't anyone see the mass exodus of gigabytes? The weasel worded breathless media reports are just dripping with a lack of specificity and reek of "omg phear the evil hackerz!" - they feel more designed to generate fear than inform. I view the whole thing with a jaundiced, skeptical eye.

    --

    Sacred cows make the best burgers.

  2. Schadenfreude on so many levels by sideslash · · Score: 4, Insightful

    The NSA has been hacking pretty much everybody in the world and their little sister, so nobody should be shocked when the same thing happens to us.

    The real kicker is the perennial lecture from clueless politicians about how we should put back doors into all our private sector encryption so law enforcement can take a peek whenever it likes. Because our information will be safe with the government. *snort*

  3. Re:If it is the Chinese by rickb928 · · Score: 4, Insightful

    Doubtful. The OPM has been negligent in this area for decades. And they are not the only agency.

    A bottom - to - top review and security renovation is critically needed, and should cost closer to $100Bn than not if it's done right. Everything, from .mil and DOD to mainline agencies and even .gov customer service sites, everything.

    And not a review. A complete reimagining and reinstallation.

    Not going to happen in this Administration, as they fear any analysis.

    The fiasco of our former Secretary of State running a private server at their own residence for official email is a example of the utter and total lack of actual information security in our government, a situation that (or should be) intolerable.

    But, politics.

    --
    deleting the extra space after periods so i can stay relevant, yeah.