Scammers leveraging OPM's credit monitoring offer

As anticipated, scammers apparently have started using the Office of Personnel Management offer of identity protection services for victims of the data breach to launch email "phishing" expeditions to trick recipients into sharing personal information.

The  U.S. Computer Emergency Readiness Team, or US-CERT, which is part of the Department of Homeland Security's National Cybersecurity and Communications Integration Center, posted a notice on its website warning of the scam.
"US-CERT is aware of suspicious domain names that may be used in phishing campaigns masquerading as official communication from the Office of Personnel Management (OPM) or the identity protection firm CSID. "Https:// is the legitimate domain used by CSID, which is responsible for identity protection services for those affected by the recent data breach.

"US-CERT recommends that users visit the OPM website for more information. Users are also encouraged to read US-CERT's guidance on avoiding social engineering and phishing attacks and report suspicious emails."

Reader comments

Sun, Sep 17, 2017 Holly Wood

As a class member of an Insurance Settlement, I got a card stating that I was now a member of the MyIDcare. The site stated could not be found. How do these scammers get away with this? Free ID Care until a certain date and then.. no way to opt out on card.

Thu, Jul 28, 2016 Jack

Why would a reportedly government site such as OPM not have an opt-out option on any of there websites. Its the Law! wake up and play by your own rules!

Fri, Feb 26, 2016 Ms. Z

It is a scam! The Federal Government does not ask for your SS# via computer. The GOVERNMENT already know who you are!

Sat, Jan 23, 2016

I just recently learned about the phishing attempt and was questioning if I had signed up for legitimate protection or given my information away. It is incredibly hard to find out that is in fact the provider that OPM is using (see Seems like that would be a good thing to lead with in dealing with this attack.

Mon, Dec 28, 2015 Ken Huntington Beach, CA

I received the OPM letter which looked like an important letter. I basically took one look at the logo in the left corner which looked poorly done or poorly copied and was rubbed off so I decided not to follow through and did not register myself. Now after reading that this is a scam I'm glad I trusted my instinct.

Show All Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above.

2021 Digital Almanac

Stay Connected

Latest Forum Posts

Ask the Expert

Have a question regarding your federal employee benefits or retirement?

Submit a question