On May 25, the Federal Retirement Thrift Investment Board (FRTIB), administrator of the Thrift Savings Plan (TSP), issued a press release to announce that a July 2011 cyber attack against third-party service provide Serco, resulted in unauthorized access to the personal information of 123,201 TSP participants and payees. Notification letters are being sent to all affected individuals.
Several files containing different combinations of data were accessed. The names, addresses, and Social Security numbers of roughly 43,000 individuals were in the accessed files. In some cases, this group of data also included financial account numbers and routing numbers. Another group of approximately 80,000 individuals had their Social Security numbers and some TSP-related information accessed, but names were not associated with this information. According to the press release, there is no indication that any of the data has been misused.
As a precautionary measure, the FRTIB will place alerts on the impacted accounts to ensure that any account activity receives heightened security. The FRTIB has established a call center to provide support and has engaged Kroll Inc. to provide its ID TheftSmartTM credit consultation and continuous credit monitoring service for one year to affected individuals.
For additional information about identity theft, visit the Federal Trade Commission website.
Employees may direct TSP-related questions to the TSP website or the TSP ThriftLine. The TSP ThriftLine can be reached (toll free) at 1-877-968-3778 or TDD 1-877-847-4385. International callers who cannot use the toll-free number should call (404) 233-4400 (not toll free). Participant service representatives are available Monday-Friday, 7:00 a.m. to 9:00 p.m. (Eastern Time). The investment board has also published a list of frequently asked questions (FAQs) related to the incident.