Dive Brief:
- OPM officials said more than a million victims of their recent hack have still not been officially notified that their data was compromised, Reuters reported.
- Last week, OPM finished sending notifications to 21.5 million people affected by the breaches, which exposed names, addresses, Social Security numbers and other sensitive information for current and former federal employees and contractors.
- About 7% of those hacked could not receive notification letters because their addresses have changed or are not on file, OPM said.
Dive Insight:
An OPM spokesman said it would resend notices to updated or changed addresses and institute a media campaign to let people know they can check a website to see if their data was hacked.
“We’re going to clean up that 7% and get as close to 100% as possible," OPM spokesman Sam Schumach said.
OPM said it will not use email notifications to reach additional victims because some experts said previous emails used in this manner resembled a phishing scam.
The government awarded technology firm Advanced Onion a $1.8 million contract to help locate and notify those affected by the data heist.
Identity Theft Guard Solutions was also hired to provide victims credit and identity-theft insurance for three years.
