US General Services Administration 2013 Technical Error (Q16813)
From Open Risk Data
A data breach risk event
Language | Label | Description | Also known as |
---|---|---|---|
English |
US General Services Administration 2013 Technical Error
|
A data breach risk event
|
Statements
861B7CD8-03BB-49C4-A074-B42B26C16065
January 2013
0 references
GSA users may have been able to view the financial information and trade secrets of other GSA users due to a security vulnerability. The specific database that was affected is called the System for Award Management (SAM). Contractor and vendor registration records are cataloged by SAM. It is not clear how GSA became aware of the issue or how long it was a problem. Agency officials revealed that users could purposefully or inadvertently view the information of other users after following a series of steps.UPDATE (03/23/2013): Users had Social Security numbers and tax identification numbers exposed. (English)