GSA General Services Administration

The General Services Administration’s Office of Inspector General said in a report issued Oct. 19 that it wants GSA’s IT Office (GSA IT) to provide a revised corrective action plan to improve the agency’s policies for responding to breaches of personally identifiable information (PII).






[…]

HealthCare.gov CMS

The Department of Health and Human Service’s Center for Medicare and Medicaid Services (CMS) reported a data breach of its HealthCare.gov site, with the attacker accessing the files of about 75,000 people, the agency said in a statement released Friday.






[…]

Facebook

Facebook said it informed users on Friday the company discovered attackers using a new technique to potentially take over user accounts–putting 50 million accounts at risk and forcing the company to take preventative action on 90 million accounts.






[…]

EPA Environmental Protection Agency

Conventional wisdom is that it takes a fairly long time to detect a cybersecurity breach. Typically, most research suggests, it takes two to three months, possibly longer. That may not be the case anymore, though, according to a recent report.






[…]

After the credit monitoring company Equifax announced that it had detected a data breach affecting potentially 143 million U.S. consumers, Rep. Ted Lieu, D-Calif., is calling for a House Judiciary Committee hearing to investigate the breach.






[…]

Jason Gray, chief information officer of Education, admitted at a House Committee on Oversight and Government Reform hearing that the agency should have informed Congress of the FAFSA breach at the same time it alerted the United States Computer Emergency Readiness Team and the inspector general.






[…]

A cyber vulnerability known to have existed as far back as October 2015 has led to a data breach at the General Services Administration’s 18F digital services organization, the GSA’s inspector general announced today.






[…]