U.S. Office of Personnel Management breach is creating a new cyber-espionage category I call the “victim-as-a-service” provider. OPM was easy prey for any attacker who might want to amass names and personally identifiable information for 4.2 million federal employees. The security problems at the agency were – and likely still are – staggering, including the absence of multi-factor authentication. Long-term fixes will be required to secure OPM, and scores of other federal agencies, in the short term.”]
Source: https://www.cuinfosecurity.com/blogs/opm-victim-as-a-service-provider-p-1883