A major data breach of DC Health Link has exposed the personal information of lawmakers and staff in both chambers, congressional officials informed members on Wednesday.
The size and scope of the breach were not immediately clear, but the FBI believes data from hundreds of members and staffers of both the House and Senate were stolen. The breach exposed “Personal Identifiable Information” of enrollees who had information on DC Health Link.
DC CRIME LAW BECOMES POLITICAL ‘NIGHTMARE’ FOR SENATE DEMOCRATS
“Speaker McCarthy and Democratic Leader Jeffries have formally requested additional information from DC Health Link on what data was taken, who was impacted and what steps they are taking — including providing monitoring protections — to protect House victims of this breach,” the House chief administrative officer said in an email to members.
Scoop: CAO has informed members and staff that the FBI is looking into the fact that the “account information and PII of hundreds of Member and House staff were stolen.” pic.twitter.com/HFHVAUf8nB
— Max Cohen (@maxpcohen) March 8, 2023
The FBI is investigating the situation, and authorities are working on compiling a list of names of those whose data was compromised. Staffers and members were encouraged to freeze their credit with Equifax, Experian, and TransUnion out of an abundance of caution.
“It is important to note that at this time, it does not appear that Members of the House of Representatives were the specific target of the attack,” the chief administrative officer emphasized.
A similar message was sent to members and staffers in the Senate informing them of the apparent hack.
NEW: Senate offices have also been alerted that their data may have been breached if they use the DC Health Link, per a notice sent to Senate offices.
A separate notice was sent to House offices today.
— Frank Thorp V (@frankthorp) March 8, 2023
Following the disclosure, the House Administration Committee said that its chairman, Bryan Steil (R-WI), was working with the CAO to address the breach and safeguard the personal information of lawmakers and staff.
Chairman Steil is aware of the breach and is working with the CAO to ensure the vendor takes necessary steps to protect the PII of any impacted member, staff, and their families. https://t.co/6rI2sVbME7
— House Admin. Committee GOP (@HouseAdmin) March 8, 2023
CLICK HERE TO READ MORE FROM THE WASHINGTON EXAMINER
In a letter requesting additional information, House Speaker Kevin McCarthy (R-CA) and House Minority Leader Hakeem Jeffries (D-NY) noted that the breach could extend to spouses and families of lawmakers and staffers.
“We write on a bipartisan basis concerning an egregious security breach within DC Health Link’s insurance marketplace, which has compromised the personal information of numerous House Members, spouses, dependents, and employees in both parties,” the letter said.
McCarthy and Jeffries letter:
“We write on a bipartisan basis concerning an egregious security breach within DC Health Link’s insurance marketplace, which has compromised the personal information of numerous House Members, spouses, dependents and employees in both parties.” https://t.co/wdBcAzo6Dz pic.twitter.com/IOshnHahfI
— Max Cohen (@maxpcohen) March 8, 2023
