Sen. Mark Warner (D-VA) is cautioning the Office of Personnel Management (OPM) against terminating government contracts established to protect the 21.5 million individuals affected by the massive 2015 data breach. In a letter to OPM, Warner emphasized that the Department of Government Efficiency’s (DOGE) efforts to reduce government contracts should not extend to those shielding individuals whose sensitive information was compromised.
The 2015 hack resulted in the exposure of Social Security numbers, birthdates, and addresses of 21.5 million people, with fingerprints and financial and medical records compromised for 1.1 million individuals. Warner, vice chairman of the Intelligence Committee, stressed that the federal workforce was dangerously exposed and that millions will continue to be at risk for the remainder of their lives.
Warner sponsored legislation to establish identity protection services, which were enacted as part of a larger spending bill. He expressed concern that OPM might curtail these services, citing recent personnel cuts and changes in the Trump administration. Warner requested that OPM notify Congress immediately if they decide to change or eliminate the identity protection services.
OPM has been assisting DOGE in implementing government-wide cuts to personnel and budgets. The agency declined to comment on the matter.
Background
The 2015 OPM breach was a significant cybersecurity incident that exposed sensitive information of millions of federal employees and contractors. The breach was attributed to China, and the stolen data included some of the most sensitive personal information available on the dark web.
Current Situation
Warner’s letter highlights the ongoing risks faced by those affected by the breach. The identity protection services established after the breach have been crucial in mitigating these risks. If OPM were to end these services, it could leave millions of individuals vulnerable to identity theft and other cybercrimes.
