US government agency breach exposes 22 million employees' data


In March 2014, when this breach was disclosed it was considered the largest espionage coup of all time, one of the biggest ever on US government systems and possibly the single most damaging breach to US national security.

The data theft consisted of stealing detailed records of every employee and consultant of the US government for the past 50 years. The exposed information included addresses, health and financial details of 19.7 million people who had been subjected to government background checks as well as 1.8 million others, bringing the total known affected to 22.1 million. Those affected could be blackmailed into providing sensitive or classified data therefore the repercussions of this breach could extend to harming the US' domestic/foreign diplomatic and intelligence work.

The hack had been in progress for two years before it was discovered and was believed to have been perpetrated by Chinese hackers.

In October 2022, a $63 million settlement related to this breach was finalised by a federal judge.

Book a consultation

Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:


  • US Office of Personnel Management

We've done the analysis so you can make the decisions

When purchasing a minimum of 5 Case Studies
$699.99 if buying less than 5.

  • Detailed cause & effect analysis
  • Lessons learnt catalogued
  • Preventive controls extracted
Add to Cart
Heads up! Want to try before you buy? You can download our FREE demo case study here