Security Clearances may now just be G&S

[Blaster229]

Aw geez! Just when I was feeling less stressed. I suppose I'll just have to wait for the pony express now.

Maybe you aren't as important as you wished you were.

 

[Maverick0313]

You would have been notified by yesterday if you were.

I got my letter this past Monday.

 

[Dingo3]

Maybe you aren't as important as you wished you were.

Trust me, I know I'm not important and don't want to be. I'm just want to get through each day without being hassled. But something, anything, from above would be nice.

 

[Blaster229]

Trust me, I know I'm not important and don't want to be. I'm just want to get through each day without being hassled. But something, anything, from above would be nice.

You'll never get hassled, believe me.

 

[Thunder239]

Anyone anticipating an email on a .gov account be sure to check your junk folder, which is where mine ended up.

 

[janklow]

Not quite sure about that. I received an email this week ( from my chain of command ) stating that OPM has stopped email notification and are awaiting a more secure means of notification to prevent further identity theft.

i could be mistaken, but i think they paused it because people had concerns about it and then resumed emailing people.
either way, having not heard by this week probably doesn't mean you won't hear down the line.

 

[pilotguy299]

I received my email on the 19th. I wonder if they are going to address the issue of family member's PII as well.

 

[Blaster229]

You're getting e mail notifications that your specific info was breached?

 

[pilotguy299]

You're getting e mail notifications that your specific info was breached?

May have been:

I am writing to inform you that the U.S. Office of Personnel Management (OPM) recently became aware of a cybersecurity incident affecting its systems and data that may have exposed your personal information.

Since the incident was identified, OPM has partnered with the U.S. Department of Homeland Security’s U.S. Computer Emergency Readiness Team (US-CERT) to determine the impact to Federal personnel. OPM immediately implemented additional security measures and will continue to improve the security of the sensitive information we manage.

You are receiving this notification because we have determined that the data compromised in this incident may have included your personal information, such as your name, Social Security number, date and place of birth, and current or former address. To help ensure your privacy, upon your next login to OPM systems, you may be required to change your password.

....
​

Along with info on the credit monitoring service OPM is paying for:

OPM takes very seriously its responsibility to protect your information. While we are not aware of any misuse of your information, in order to mitigate the risk of potential fraud and identity theft, we are offering you credit monitoring service and identity theft insurance through CSID, a company that specializes in identity theft protection and fraud resolution. All potentially affected individuals will receive a complimentary subscription to CSID Protector Plus for 18 months. Every affected individual, regardless of whether or not they explicitly take action to enroll, will have $1 million of identity theft insurance and access to full-service identity restoration provided by CSID until 12/7/16.

....
​

Although they don't have all of the PII for family members while active, it gets sent to them once you retire for FEHB and FEGLI purposes.

 

[Blaster229]

That's what I got in snail mail.
We all got a mass e mail stating that if we are compromised that we would get a snail mail letter by June 19. And what you posted, was the actual letter.
The e mail didn't have the log in and monitoring redemption code. The snail mail did.

 

[pilotguy299]

That's what I got in snail mail.
We all got a mass e mail stating that if we are compromised that we would get a snail mail letter by June 19. And what you posted, was the actual letter.
The e mail didn't have the log in and monitoring redemption code. The snail mail did.

The email I received did have a link to CSID and a PIN code for redemption. Maybe they handle retirees by email instead.

I am really concerned about my family members PII, more than my own. OPM needs to step up to the plate and provide protection for them as well.

 

[ShallNotInfringe]

Got the email with the link and pin also.

 

[Sundazes]

Who was the email from as it shows in the from address?

 

[pilotguy299]

Who was the email from as it shows in the from address?

From: opmcio@csid.com
To: pilotguy299
Subject: Important Message from the U.S. Office of Personnel Management CIO
Date: Fri, 19 Jun 2015 17:00:08 -0500


​

 

[Blaster229]

From: opmcio@csid.com
To: pilotguy299
Subject: Important Message from the U.S. Office of Personnel Management CIO
Date: Fri, 19 Jun 2015 17:00:08 -0500


​

I'm not familiar with that addy.

 

[pilotguy299]

I'm not familiar with that addy.

OPM's web site mentions CSID:

http://www.opm.gov/news/latest-news/announcements/

http://www.opm.gov/news/latest-news/announcements/frequently-asked-questions/

I received an email from opmcio@csid.com. Is this email from OPM, or is this a phishing scam?

OPM has contracted with a firm called CSID to help it send notifications as quickly as possible. For those individuals potentially affected by the incident involving personnel information, the emails will come from the sender “OPM CIO” from this address: opmcio@csid.com.​

 

[BeoBill]

OPM's web site mentions CSID:

http://www.opm.gov/news/latest-news/announcements/

http://www.opm.gov/news/latest-news/announcements/frequently-asked-questions/

I received an email from opmcio@csid.com. Is this email from OPM, or is this a phishing scam?

OPM has contracted with a firm called CSID to help it send notifications as quickly as possible. For those individuals potentially affected by the incident involving personnel information, the emails will come from the sender “OPM CIO” from this address: opmcio@csid.com.​

THAT answer simply amazes me. This is a new high for stupid and bungling, even for OPM.

They could try signing the emails with a traceable and verifiable certificate, but that would require a nerve bundle at the top of their spine that was capable of a cogent thought. After all, the technology has been in common Government use (by NIST) only for a freakin' DECADE.

 

[Kinetic]

THAT answer simply amazes me. This is a new high for stupid and bungling, even for OPM.

That was the address on mine as well. How hard would it have been to use a .gov URL to ease peoples minds who have already been burned?

 

[Kinetic]

One other thing-They shovel 3 or 4 million (or more) accounts right over to this single source CSID outfit out of the clear blue sky.

Wonder how many of those OPM slugs loaded up on CSID stock over the last month or so?

 

[Whitty Whit]

So is it a good g&s or not?