The US Government Accountability Office (GAO) revealed that CGI Federal, an IT contractor and subsidiary of CGI Inc, reported a data breach last month affecting around 6,000 current and former GAO employees.
The breached data includes personally identifiable information such as names, social security numbers, addresses, and some banking details of employees who worked at GAO from 2007 to 2017. The breach was attributed to a ‘threat actor exploiting a vulnerability in an externally provided platform,” as stated in a notification letter. The GAO, a congressional research arm, was informed about the breach on 17 January.
