If you read the Q&A the US Postal Service issued earlier today on the massive data breach the agency suffered recently, you might have noticed a curious omission. The very first question is “How and when did the security breach occur?” Having asked the most obvious question, the USPS doesn’t actually answer it. There’s no explanation as to how the breach occurred, and the vague answer to the question “when” is just “recently”.
How “recently”? How about two months ago! In a statement issued this afternoon, Congressman Darrell Issa says that the USPS knew about the attack back in September, but insisted on keeping it quiet:
House Oversight and Government Reform Committee Chairman Darrell Issa, R-Calif., and House Oversight Committee Subcommittee on Postal Service Chairman Blake Farenthold, R-Texas, today released the following statement in response to the United States Postal Service’s announcement that the Chinese purportedly hacked the agency’s data:
“…the Committee understands the Postal Service has known about this attack since September and presented this information to Congress several weeks ago, but did so as a classified matter. The Committee will be seeking information about why the Administration waited two months before making the news of this attack public and preventing victims from taking proactive measures to secure their own information. We have not been told why the agency no longer considers the information classified.”