Bill Introduced to Assist Federal Employees Impacted by Government Data Breaches

H.R. 3403 would establish a designated federal official to serve as the interagency cyber victim coordinator.

Binary codeCongressman Anthony Brown (D-MD) has introduced, H.R. 3403, the so-called Cyber VICTIM bill (the Valuing Individual Cybersecurity Through Interagency Measures Act) that would establish a designated federal official to serve as the interagency cyber victim coordinator. The main duties of this position would be to coordinate federal agency response efforts to data breaches and cyber attacks on federal employees, and to ensure that affected federal workers receive a timely and appropriate response from their employer, and to develop processes and procedures to keep victims informed of mitigation activities concerning personal information, and prosecutions of the perpetrators.

It has now been approximately two years since the announcement of the Office of Personnel Management’s (OPM) personnel records and background investigation data breaches that impacted over 20 million individuals, including the federal workforce.  OPM continues to make information available for individuals with questions (posted on OPM’s web site at https://www.opm.gov/cybersecurity). As a reminder, owing to NTEU efforts on Capitol Hill, OPM is providing both identity theft liability insurance, as well as credit monitoring and theft protection services to affected individuals for a period of ten years. The DOD-run Verification Center that was set up last year for individuals who believe they may have been affected by the background investigation breach but never received a notification letter is still operational. Individuals can contact the Verification Center, either online or by a toll-free number, to find out whether or not they were affected by receiving a mailed confirmation letter in 2–4 weeks’ time. The Verification Center can be accessed online via OPM’s cybersecurity site at https://www.opm.gov/cybersecurity or by calling 1-866-408-4555 (Monday through Friday from 9 a.m. to 9 p.m. Eastern). The Verification Center will remain operational through the end of December 2018.

NTEU would also like to remind all of our members that no calls will be made to notify affected individuals, nor will anyone personally reach out and ask for any information during this process.

Wooden gavelNTEU also continues its efforts on the lawsuit we filed to provide lifetime credit monitoring and identity theft protection for our members, and to ensure that the U.S. Government does not allow such a severe breach of personal information to happen again.