News & information
At 9 o’clock this morning, NALC received the following information on the cyber breach that compromised Postal Service employees’ personal and employment information. This is the first we heard of the cyber intrusion. NALC will continue to monitor this situation and report on any new developments.
Notification of cyber intrusion and employee data compromise
The Postal Service recently learned of a cyber intrusion into some of its information systems and an investigation began as soon as the intrusion was discovered. Steps already have been taken to strengthen the security of USPS systems and there will be additional measures in the coming days and weeks.
The investigation indicates that files containing employee information were compromised, including names, dates of birth, social security numbers, addresses, beginning and end dates of employment, and emergency contact information for all active employees. In addition, we are aware of a possible compromise of injury claim data that we are still investigating involving a small number of employees. Individualized letters will provide everyone with specific information about their particular situation.
PMG Patrick Donahoe has recorded a special video for employees with background information, an explanation of steps being taken to protect employees, and an explanation of resources available on the cyber incident.
“I’d like to say how bad I feel that the whole organization has been victimized,” says Donahoe. “The Postal Service has put in a lot of effort over the years to protect our computer systems and the bad guys haven’t been successful until now.”
Donahoe apologized that the incident happened. “You also have my commitment that we will help all of our employees deal with the situation,” he said. “We are a resilient organization and we’ll get through this.”
The video can be viewed from the postal intranet Blue on any postal computer, or from your personal computer on the Postal Service YouTube channel: youtube.com/user/uspstv.
A 1-page employee handout, which can be found on the next page of this Newsbreak, is being provided to all employees.
You also can check special pages being posted on the Blue (blue.usps.gov) and LiteBlue (liteblue.usps.gov) employee websites at 11:30 a.m. EST, Nov. 10. The Blue website is available from any postal computer on the postal internal network. LiteBlue is available from any computer connected to the Internet. You will need your Employee ID number and your employee password to access LiteBlue. Check the Blue or LiteBlue home pages for a new box titled: “!! Important Employee Information !!” in the left column.
Along with the handout, online resources include: an employee video, a stand-up talk and FAQs. Please check the handout and resources for more information.
In addition, the Employee Assistance Program is available for specific concerns you may have, at EAP4YOU.com online, or by phone at 800-327-4968; TTY 877-492-7341.
- Postmaster General Patrick Donahoe’s message to employees regarding the cyber incident (YouTube)
- PMG’s message transcript (PDF)
- Notification of cyber intrusion and employee data compromise (PDF)
- USPS Cyber Intrusion and Employee Data Compromise Employee FAQs (PDF)
- USPS Cyber Intrusion and Employee Data Compromise Employee handout (PDF)
- Notification of USPS Cyber Intrusion and Employee Data Compromise Stand-Up Talk (PDF)
- Notification of USPS Cyber intrusion and Employee Data Compromise Stand-Up Talk (for facilities with no video) (PDF)
- USPS Cyber Intrusion and Employee Data Compromise posting schedule for Blue, LiteBlue, usps.com (PDF)