It is all over the news, the 4-million Federal Employee OPM database was hacked and lots of employee information leaked to probably the Chinese. This weekend on CNN they said that in the coming few days all Fed employees will receive an email something like: “You’ve been hacked, here’s what you need to do to protect yourself.” The press has a tendency to jump to the “who” but it is more interesting to focus on the how and why. The real issue here is how the attackers penetrated the OPM again, just after a major data breach a year ago. The focus on this recent breach should be how come they did not fix an apparently systemic problem after the first attack. Having said that, many people work (or used to work) for a lot of different government institutions, and will not know if their data was in that database or not. Sometimes they will have family members working for local, county or state government and will be worried that their data is exposed too. This is a phishing bonanza and I’m willing to bet that the cyber criminals are already working on campaigns to exploit this fear. So with all that’s happened lately perhaps this warning would be appropriate to share with your employees, family members, and friends. It’s only a matter of time before this NEW phishing expedition tries to take advantage of unsuspecting users who fear their information has fallen into the hands of hackers. “It’s all over the news, again. A large database with personal information on Federal employees has been hacked and millions of employee records are now out there. Cyber criminals are going to use this hack to scare you into clicking on phishing emails and infect your computer with malware or trick you into giving out personal information. “If you receive an email that claims your personal information has been hacked, and that you need to click on links or open attachments to find out how to protect yourself, be very careful. Do not click on links, do not open attachments, and if there is a reference to a website with more information, type the web address in your browser, do not click on any links. Always verify the sender before providing any information.” Additional information on this breach can be found here: http://www.businessinsider.com/us-officials-are-investigating-a-massive-data-breach-of-federal-personnel-data-2015-6 Please feel free to share this message.