Federal Retirement Thrift Investment Board has changed its story about how it learned about a July 2011 data breach. The board says it was notified of the breach on April 10 by Serco Inc., a third-party service provider it hired in 2011. Serco provides professional, technology and management services focused on the federal government. The breach is believed to have exposed personally identifiable information on as many as 123,000 retirement plan participants. Some experts speculate that the attack was waged for intelligence-gathering purposes.”]
Source: https://www.cuinfosecurity.com/pension-plan-clarifies-breach-discovery-a-4832