Two Years After OPM Cyberattack, More Must Be Done

Two years ago this month, officials revealed the largest hacking of the federal government in history when more than 20 million Americans’ personnel files were stolen from the Office of Personnel Management. Among the information exposed: Social Security numbers, fingerprints and sensitive details stemming from background checks.

Government investigators have said that while the hack was attributable in part to some easily fixable problems like weak user names and passwords, a major culprit was OPM’s outdated information technology systems, which were increasingly vulnerable in this era of relentless cyberattacks.

In the two years since the breach, OPM and other government agencies have instituted some common-sense measures to protect government-stored data. But more needs to be done. The U.S. government is still woefully behind where we need to be. For example, some IT systems being used today to manage major government operations and data pre-date the Apollo moon landing in 1969.

It is time to move beyond the IT status quo that federal agencies and departments are saddled with today.

Recently, the U.S. House of Representatives took a major step to correct this problem by unanimously passing the Modernizing Government Technology Act. Sponsored by Rep. Will Hurd (R-Texas) and supported by Democrats and Republicans alike, this legislation would allow the federal government to improve its outdated technology systems and bolster the nation’s cybersecurity defenses. It would authorize funding to improve, retire or replace current federal government technology systems, accelerate the transition to cloud computing, and procure IT products and services to strengthen the federal government’s cybersecurity defenses.

Currently, the federal government spends 80 percent of its $80 billion IT budget on maintaining aging, insecure and expensive legacy systems. This is dangerously unacceptable in an era of increasing cyber threats.

Passage of the MGT Act will accelerate the adoption of state-of-the-art technologies, helping the federal government secure data, save taxpayer dollars and deliver higher quality services to our veterans and other citizens.

This legislation now requires Senate action, and we see daily evidence that reminds us of how hackers are always looking for new ways to exploit any vulnerability they can.

As individuals, most of us have received that dreaded notification about “suspicious activity” on our credit card account. Businesses of all sizes have been targeted and had to ramp up cyber defenses to protect their customers’ information.

While it is unfortunate, cyberattacks have become a part of daily life.

Part of the solution is common sense — updating software and credentials, and personal responsibility. But the most important thing we must do is modernize the federal government’s IT systems with sound, secure and modern technologies.

Cyber criminal syndicates and other bad actors will continue targeting us, but we don’t need to accept getting hacked as the new normal.

This message must be heard throughout the federal government — starting with the U.S. Senate, which should pass the Modernizing Government Technology Act without delay. Doing so will usher in a new era of secure, efficient and cost-effective government services.


Linda Moore is president and CEO of TechNet, a national bipartisan network of technology executives.

Morning Consult welcomes op-ed submissions on policy, politics and business strategy in our coverage areas. Updated submission guidelines can be found here.


Tech Brief: 3 House Democrats Call for FCC Investigation of Sputnik

Three Democratic members of the House Energy and Commerce Committee called on the Federal Communications Commission to investigate whether Sputnik, a news organization established by a Russian state-owned news agency, violated the public interest standard of its broadcast license with its radio show. Reps. Anna Eshoo (Calif.), Frank Pallone Jr. (N.J.) and Mike Doyle (Pa.) asked FCC Chairman Ajit Pai to follow up on a New York Times Magazine report that suggested the organization used U.S. airwaves to broadcast programming aimed at influencing the outcome of the 2016 U.S. presidential election.

Tech Brief: FCC Requests More Information on Sinclair-Tribune Merger

The Federal Communications Commission asked Sinclair Broadcast Group to provide more information on its proposal to acquire Tribune Media Co., a merger currently pending FCC approval. The FCC’s Media Bureau chief wrote a letter to Sinclair asking the telecommunications company to present further information about the size of its current audience, as well as the steps the company plans to take to stay below the ownership cap.

Tech Brief: Kaspersky Agrees to Testify Before House Committee

The House Science, Space and Technology Committee invited Kaspersky Lab Inc. co-founder and CEO Eugene Kaspersky to testify, along with other private and U.S. government cybersecurity experts, before the panel on Sept. 27, and he accepted the invitation — pending the acquisition of an expedited visa. The Moscow-based company, which makes antivirus software, is on the defensive from allegations it aids Russian espionage efforts.

Tech Brief: Judges Rule Uber-Waymo Case Will Go to Trial, Not Arbitration

A panel for the U.S. Court of Appeals for the Federal Circuit denied Uber Technologies Inc.’s appeal request for its legal dispute with Waymo LLC to move to private arbitration and ruled a public trial will proceed as scheduled in October. The court also ruled that Uber must hand over a crucial report for Waymo’s case that could hold evidence Uber stole trade secrets related to the development of self-driving cars.

Tech Brief: House Democrats Request Answers From Equifax on Data Breach

Led by Rep. Frank Pallone Jr. (D-N.J.), all 24 Democrats on the House Energy and Commerce Committee sent a letter to Equifax Inc. CEO Richard Smith expressing concerns that it took more than a month for the company to reveal the massive data breach it said took place from mid-May through July, and about the scale and extent of the breach. The signers asked Smith to address these concerns prior to a planned hearing on the issue.

Tech Brief: Apple Expected to Unveil Premium Model ‘iPhone X’ Today

Apple Inc. plans to premiere the so-called iPhone X with a starting price of $999.00 at a 10th anniversary iPhone event on Tuesday, joining Samsung Electronics Co. Ltd in the market for luxury smartphones. In addition to the iPhone X, which uses infrared facial recognition to unlock the device, Apple is also expected to release cheaper models of the iPhone and an updated Apple Watch, with self-contained connect

Tech Brief: Two House Committees Call Hearings on Equifax Data Breach

Equifax Ltd. could be examined by up to three committees in the U.S. House of Representatives after a breach at the company exposed the data of roughly 143 million people. Chairman Jeb Hensarling (R-Texas) of the Financial Services Committee and Chairman Greg Walden (R-Ore.) of the Energy and Commerce Committee announced hearings, and Rep. Ted Lieu (D-Calif.) called for an investigation by the Judiciary Committee.

Load More