The Office for Personnel Management (OPM), the office responsible for setting policy for Federal Employees in the Washington area is warning people about new scams surrounding the notification process from their most recent data breach. The Better Business Bureau has also been notified recently of a number of different approaches that scammers are taking to further gain personal information in direct relation to this notification process. Learn how to avoid these scams and find out how the OPM is dealing with this issue before doing anything further with notifications you receive.
Original Information Breach at OPM
- Also Read: 3 Reasons Certain Federal Employees Can Retire Years Earlier Than Their Peers Without Penalties
- Also Read: CSRS Retirement in 2024: Are You Making the Most of What This Classic Plan Has to Offer?
- Also Read: Roth IRA Basics for Beginners: What’s There to Learn?
This data breach was actually discovered and realized in June 2015, yet it is still making news because of how new scammers are taking advantage of the notification process. The original information breach included an unprecedented 21.5 million Americans. The breach did not just affect federal employees and job applicants as the breach centered around the hiring process that also included background checks. This extended breach may include those contacted during the background check process for federal employees. This is significant because it helps confuse the situation as many receiving letters may not be federal employees or even applied for a federal position.
The information at risk is varied and can include a person’s Social Security Number, mental health records, financial history and even fingerprint information. As a result there are multiple letter formats being sent as notification to individuals with different personal information breaches. This can also add to the confusion as two people may compare letters that are markedly different.
How Notification is being handled
Notification for this data breach by the OPM is also being handled differently than previous data breaches. The previous breach, people were notified by email, whereas in this breach notifications are being sent by traditional mail through the US Postal Service.
So if you receive an email notification, regarding this recent data breach, it is most likely a scam.
As notification letters can differ in their format you have to be sure that the one you receive in the mail is an authentic version. Authentic letters can be verified in a few different ways. First and foremost all real letters will include a 25 digit PIN (Personal Identification Number) allowing you to sign up for free identity theft and credit monitoring by the government. You will be directed to enroll at:
• www.opm.gov/cybersecurity or
• 1-800-750-3004
If you receive a letter that directs you anywhere else, or does not have a PIN, it is a fraudulent letter. You can also go directly to the OPM website to verify your letter version as all versions are listed on their website. Being vigilante about your personal details mentioned in these letters may also help recognize a fake letter.
What Scams to look out for
There are a number of ways that organized crime is targeting individuals in order to gain access to their personal information in relation to the data breach notification process. The easiest one to recognize is if you are notified any other way besides an official letter through the US Postal Service. If you receive an email or a direct telephone call from someone saying they are with the OPM regarding this data breach, it is most likely a scam. Your first contact will be a mailed letter. Do not click on any unknown emails regarding this issue as even clicking to open them can often infect your computer.
Secondly, make sure to authenticate all letters received by mail, as multiple versions of scammed letters have been discovered. The first tell-tale sign is no PIN number as described above. The second sign is a letter directing you to visit or call any other website or phone number from that provided above.
Unfortunately the OPM data breach is still causing significant problems for Americans, be sure you do not fall into this secondary trap.
