FEMA Data Breach Exposes Private Data of Nearly 3 Million Individuals

FEMA Data Breach Exposes Private Data of Nearly 3 Million Individuals


FEMA Data Breach Exposes Private Data of Nearly 3 Million Individuals

FEMA, data breach, disaster victim

A data breach has occurred within the offices of FEMA, resulting in the private data of over 2 million disaster victims being shared with a contractor. | Source: Shutterstock

Adata breach has occurredwithin the Federal Emergency Management Agency (FEMA), resulting in the private data of nearly three million disaster victims being shared with an unnamed contractor.

The shared information includes home addresses, social security numbers and banking information for victims of U.S.-based disasters such as hurricanes Irma, Harvey and Maria in 2017 that utilized the organization’s Transitional Sheltering Assistance program, which seeks to aid and relocate individuals following a natural disaster.


Join CCN for $9.99 per month and get an ad-free version of CCN including discounts for future events and services. Support our journalists today. Clickhere to sign up.


FEMA press secretary Lizzie Litzowexplains in a statementthat the organization “provided more information than was necessary” to the contractor, and that FEMA has taken “aggressive measures to correct this error.”

Desperate Measures Are Called For

She claims:

FEMA is no longer sharing unnecessary data with the contractor and has conducted a detailed review of the contractor’s information system.

At the time of writing, it us unknown if the data breach has led to larger problems for victims such as identity theft or fraud. The Office of the Inspector General,which issued a reportdetailing the breach, is working with FEMA to ensure its employees receive additional security and privacy training from theDepartment of Homeland Security(DHS). A data filter has also been installed to ensure remaining information does not leave FEMA’s networks.

FEMA, data breach, disaster victim

FEMA says it’s working on a permanent fix of the data breach, but that it may not arrive until the year 2020. | Source: Shutterstock

FEMA has contacted security experts to conduct on-site checks. It has also installed additional controls to measure how wide and deep the breach goes. It warns that while a permanent fix is the main goal, itmay not arrive untilthe year 2020.

Litzow says the organization is working with the contractor to ensure private user data is immediately deleted:

FEMA has worked with the contractor to remove unnecessary data from the system and updated its contract to ensure compliance with Department of Homeland Security cybersecurity and information-sharing standards. FEMA’s goal remains protecting and strengthening the integrity, effectiveness and security of our disaster programs that help people before, during and after disasters.

The Anger Grows

Several politicians and government officials haveexpressed their frustrationwith FEMA’s handling of the data. Bennie Thompson – Mississippi representative and chairman of the House Homeland Security Committee – says:

This is unacceptable, and FEMA must demonstrate it will do better in the future. Safeguarding the information of Americans already suffering from a disaster should be of the utmost importance.

About The Author

Nick Marinoff

Read More

Be the first to comment on "FEMA Data Breach Exposes Private Data of Nearly 3 Million Individuals"

Leave a comment

Your email address will not be published.


*