On Air: Federal News Network
Trending:
Listen Live
Workforce

Former fed files a class-action lawsuit against OPM for cyber breach

The Office of Personnel Management faces a third lawsuit in the wake of the cybersecurity breach it suffered in June that resulted in 22 million past, present, ...

Sam Ufret@Sam_Ufret
August 18, 2015 2:12 pm
1 min read
     

The Office of Personnel Management is hit with another lawsuit against it for the cybersecurity breach it suffered in June.

Edward Krippendorf — a former Defense Department employee — filed a class action complaint against OPM and Keypoint Systems — the contractor directly involved in the security clearance system at the time of the hack — after having his personal information compromised.

In the lawsuit, Krippendorf alleges that despite knowing about cybersecurity  flaws in its network, “OPM failed to take steps to remedy those deficiencies.”

Krippendorf also claims OPM violated the Privacy Act by ignoring recommendations for security upgrades from the Inspector General since 2007.

        Join us Apr. 23 and 24 at 1 p.m. EST for Federal News Network's CX Exchange where we'll be hosting leaders and industry experts to get insight on how agencies are embedding CX into their missions. | Register today!

The lawsuit cites multiple issues in a November 2014 audit that “could potentially have national security implications” such as OPM’s decentralized governance structure, remote access sessions that don’t terminate after periods of inactivity and  failure to monitor software.

While the lawsuit doesn’t call for specific types of compensation such as money, it does ask for “appropriate relief, including actual and statutory damages,” and “declaratory relief” like Social Security cards and passports reissued to the plaintiffs for free.

Krippendorf’s lawsuit is the third OPM faces in the aftermath of the breach.

The American Federation of Government Employees, the largest union representing federal employees,  filed a class action lawsuit on June 29 against OPM and Keypoint Systems, along with then-OPM Director Katherine Archuleta and chief information officer Donna Seymour.

The National Treasury Employees Union announced in July it also was filing a class action complaint against Archuleta.

NTEU’s suit claims OPM failed to safeguard information and ensure agency officials took steps to reduce the risk of unauthorized access use under the  Federal Information Security Management Act.

Read all of Federal News Radio’s coverage of the OPM Cyber Breach.

        Read more: Workforce

Copyright © 2024 Federal News Network. All rights reserved. This website is not intended for users located within the European Economic Area.

READ MORE
     

Related Stories

    Federal News Radio pinwheel icon

    NTEU files lawsuit against OPM citing agency’s failure to protect feds’ privacy

    Workforce Read more
Related Topics
Agency Oversight All News American Federation of Government Employees Cybersecurity Management Office of Personnel Management OPM Cyber Breach Technology Unions Workforce