Blog

 
     

Pentagon Breach Raises Questions about Contractor Background Checks

By Michael Klazema on 10/30/2018

The Pentagon recently disclosed a significant data breach of Department of Defense records. Per a report from the Associated Press, the breach involved a Department of Defense contractor and exposed data from DoD travel records, including personal information and credit card numbers. It is estimated the breach affected some 30,000 people. The AP report notes those estimates could increase as the government continues to investigate the breach. Both “military and civilian personnel” were affected.

A cyber security team member notified Pentagon leaders about the breach on October 4. Since then, the government has been trying to ascertain the size of the hack and determine who was responsible for it. While those details remain unavailable, the Pentagon has indicated an unidentified Department of Defense contractor may be involved. The vendor was not identified for “security reasons.”

This incident isn’t the first time the federal government has indicated a third-party contractor is involved in a breach. In 2014, USIS, a contractor for the Office of Personnel Management (OPM), disclosed a breach that exposed personal information for 25,000 government employees. At the time, USIS was responsible for running most of the security clearance background checks for OPM. Shortly after that, OPM cut ties with USIS, and just months after that, OPM suffered its own massive breach, which compromised 21.5 million personnel records.

These issues, with USIS and with the unidentified vendor allegedly responsible for the recent Pentagon breach, beg the question of what strategies the federal government has in place for screening its contractors. The AP report raised questions about whether the Pentagon was adequately protecting its data and systems at all, regardless of the involvement of outside vendors. A federal report released a few weeks ago noted the Pentagon had been lax about updating security for military weapons programs, leaving them vulnerable to cyber breaches.

At backgroundchecks.com, we offer a solution tailored to help businesses screen vendors, contractors, co-employed individuals, and other non-traditional personnel. Organizations often struggle with vetting these individuals or entities. Some aren’t sure where to start, while others wonder whether vendors or contractors require the same level of background check vigilance as full-time employees.

As the leak of DoD travel records shows, a vendor or contractor can hold significant responsibilities in the areas of privacy and data management. You are trusting the organizations or individuals with your company’s data, trade secrets, and other proprietary information. Running adequate background checks for contractors and vendors is just as important as it is for your full-time employees. Learn more about the importance of vendor and contractor background checks by reading our whitepaper on the subject.

 

Sources: 
https://www.tripwire.com/state-of-security/security-data-protection/cyber-security/the-opm-breach-timeline-of-a-hack/

https://en.wikipedia.org/wiki/Office_of_Personnel_Management_data_breach

https://apnews.com/7f6f4db35b0041bdbc5467848225e67d

https://wccftech.com/pentagon-data-leaked-contractor/


Tag Cloud
Categories
Recent Posts

Latest News

  • February 18

    Many hiring decisions are based mostly on candidates’ past work experiences. Here’s how a background check can verify employers to make sure those hiring decisions are grounded in fact.


  • February 14 As more states legalize various forms of marijuana, past marijuana convictions are still causing concern while uncertainty over substances such as CBD drives new arrests. 
  • February 12 A new bill in the New York State legislature could add new requirements for school employee background checks. Currently, private schools are not required to follow state mandates regarding background checks.
  • February 07 Some parents in El Paso, Texas have been left wondering about the strength of their city's youth sports procedures after a felon fraudulently took funds for a girls' soccer team.
  • February 06 If there is one way that volunteer organizations could serve their communities better, it’s implementing more thorough volunteer screening policies.
  • February 05 Madison County, Illinois has created a new initiative designed to help individuals overcome barriers to employment. Clients of the initiative will be able to explore criminal record expungement among other options.
  • February 01 An OfficeTeam survey found that the two most common forms of resume dishonesty had to do with past employers: job experience and job duties or responsibilities.
  • January 31 During the longest government shutdown in U.S. history, hundreds of thousands of federal employees have gone without work for more than a month. Some are finding temporary alternatives elsewhere.
  • January 29 A Florida nurse has been arrested for allegedly stealing two types of prescription pain medications from the county jail where she worked. The case highlights the importance of rigorous drug testing procedures for employment situations in which employees have access to prescription drugs.
  • January 24 After the airline failed to adequately disclose to applicants that they would undergo a background check, a court has ruled Delta did not meet its legislative obligations. The settlement highlights the importance of rigorous compliance.