A company that performs background checks for the U.S. Department of Homeland Security (DHS) was the victim of an attack.
US Investigations Services (USIS) suffered the computer breach, which looks like it involved the theft of personal information of DHS employees, according to a published report Wednesday.
DHS suspended all work with the Falls Church, VA-based company while the FBI investigates. A “multi-agency cyber response team is working with the company to identify the scope of the intrusion,” said DHS spokesman Peter Boogaard.
“At this time, our forensic analysis has concluded that some DHS personnel may have been affected, and DHS has notified its entire workforce, out of an abundance of caution, to advise them to monitor their financial accounts for suspicious activity,” Boogaard said, adding they will inform employees who suffered compromise.
The Office of Personnel Management (OPM) also suspended work with USIS. Government officials do not believe the breach has affected non-DHS employees.
“We are working collaboratively with OPM and DHS to resolve this matter quickly and look forward to resuming service on all our contracts with them as soon as possible,” USIS said in a statement.
“Experts who have reviewed the facts gathered to-date believe it has all the markings of a state-sponsored attack,” USIS officials said.
USIS, the largest commercial provider of background investigations to the federal government, has over 5,700 employees and provides services in all U.S. states and territories, as well as abroad.