People who called USPS customer service may have also had their phone numbers and home addresses leaked. USPS learned about the hack in September, but didn't inform employees until today because they were still working to fix the issue. "We notified employees as soon as we were able to without jeopardizing the remediation efforts. Earlier notification could have resulted in additional files being compromised," a spokesperson told me via email.
The Postal Service is the latest government organization to have data stolen; in late October, the White House was hacked, reportedly by Russian forces. This time around, Chinese hackers are suspected, which begs the question: What do they want with postal workers' information? According to The New York Times, this was probably more of a general reconnaissance mission than an attempt to steal the identities of our nation's package deliverers:
If the attack was Chinese in origin, it raises the question of what the value would be in obtaining personal information about employees and customers. Unlike the White House, the Postal Service does not handle much classified or sensitive information. But some cyber experts speculate that what the intruders are seeking is an understanding of how federal computer systems operate, and what kinds of data is available.
This is good news for the people compromised in the attack, since their actual info wasn't the prize. But this is worrisome on a wider scale because it means foreign intelligence agencies are making inroads in learning how U.S. systems operate. Happy Monday! [New York Times]
source: gizmodo.com by Kate Knibbs