‘Adversary’ used credential of Colo. contractor
WASHINGTON — The head of the government agency that suffered two massive cyberattacks said Tuesday that a hacker gained access to its records with a credential used by a federal contractor.
Katherine Archuleta, director of the Office of Personnel Management, told a Senate hearing that an “adversary” somehow obtained a user credential used by KeyPoint Government Solutions, a contractor based in Loveland, Colo.
She didn’t say when that occurred or if it was linked to the cyberbreaches that exposed private information on nearly every federal employee and personal histories of millions with security clearances.
“I want to be very clear that ... we don’t have any evidence that would suggest that KeyPoint as a company was responsible or directly involved in the intrusion,” she said.