EEOC experienced security incident involving contractor’s ‘unauthorized’ access, email says

The EEOC reported that contractor employees with privileged access to its Public Portal mishandled agency data around Dec. 18, potentially exposing employee PII; the agency secured systems, required password resets, and is coordinating with law enforcement while contractor Opexus says the responsible individuals are under prosecution and that it has strengthened screening and oversight.