Watch CBS News

Federal government hit by major data breach

U.S. officials tell CBS News that Chinese hackers are suspected in a data breach involving several federal agencies, including the one that oversees security clearances and employee records for millions of government workers
China suspected in massive U.S. government data breach 01:32

WASHINGTON - The Obama administration is scrambling to assess the impact of a massive data breach that occurred when federal agencies were hacked.

A congressional aide familiar with the situation, who declined to be named because he was not authorized to discuss it, says the Office of Personnel Management (OPM) -- the agency that handles security clearances and employee records -- and the Interior Department were hacked. A second U.S. official who also declined to be identified said the data breach could potentially affect every federal agency.

U.S. officials say the investigation is not complete but all signs point to Chinese hackers as the culprit of the massive data breach, CBS News White House Correspondent Major Garrett reports. The FBI and Department of Homeland Security (DHS) will not confirm the source of the attack publicly, but U.S. officials said the cyber-signatures and methods of the attack indicate Chinese hacking malware and methods.

Sen. Susan Collins, R-Maine, a member of the Senate intelligence committee, told the Associated Press the hackers were believed to be based in China. She called the breach "yet another indication of a foreign power probing successfully and focusing on what appears to be data that would identify people with security clearances."

A spokesman for the Chinese Embassy in Washington called such accusations "not responsible and counterproductive."

"Cyberattacks conducted across countries are hard to track and therefore the source of attacks is difficult to identify," spokesman Zhu Haiquan said Thursday night. He added that hacking can "only be addressed by international cooperation based on mutual trust and mutual respect."

OPM released a statement saying that the incident potentially affected "personnel data for current and former federal employees, including personally identifiable information (PII). The number affected could be "approximately 4 million individuals," the statement read.

A DHS statement appeared to confirm the hack, saying that the agency used cyber indicators to detect malicious activity affecting the information technology systems and data in April 2015. At the beginning of May, DHS concluded that OPM's data had been compromised.

"DHS is continuing to monitor federal networks for any suspicious activity and is working aggressively with the affected agencies to conduct investigative analysis to assess the extent of this alleged intrusion," the agency said in a statement.

David Cox Sr., president of the American Federation for Government Employees (AFGE), issued a statement saying the attack "targeted personnel records of federal employees and retirees maintained on computers by the Office of Personnel Management."

Cox said AFGE "will demand accountability and will take every necessary step to see that the interests and security of the nearly 700,000 people we represent are addressed."

In addition to the 4 million individuals being notified by OPM, the agency said additional notifications could become necessary as the investigation continues. It is offering credit report access, credit monitoring and identify theft insurance and recovery services to potentially affected individuals through a company called CSID.

Separately, the FBI said it is investigating the issue.

The White House was considering a public announcement of the breach Thursday night or Friday morning, an official told the Associated Press.

The Office of Personnel Management is the human resources department for the federal government, and issues security clearances.

This would not be the first time hackers attempted to breach the federal agencies.

In December 2014, the government confirmed that the computer files of more than 40,000 federal workers may have been compromised by a cyberattack at federal contractor KeyPoint Government Solutions. KeyPoint became the largest private clearance firm working for federal agencies several months ago after rival contractor United States Investigative Services (USIS) lost its investigations business with the government following a devastating cyberattack reported earlier that year.

The USIS breach, similar to previous hacking episodes traced to China, tainted the files of at least 25,000 Department of Homeland Security workers and prompted the personnel office's decision to halt all of USIS' government field work. That move led to the cancellation of more than $300 million in contracts with USIS.

A wide-ranging strike reported in November compromised the data of more than 800,000 Postal Service workers. The personnel office itself was targeted earlier by cyberhackers traced to China.

CBS News' Jeff Pegues, Major Garrett and Arden Farhi contributed to this report.

View CBS News In
CBS News App Open
Chrome Safari Continue
Be the first to know
Get browser notifications for breaking news, live events, and exclusive reporting.