As if having personally identifiable information stolen was not bad enough, the US Navy now says fingerprint records were also compromised in the recent devastating OPM breach:

The Department of the Navy (DON) has sent a notice to more than 436,000 active duty personnel and reservists, as well as over 195,000 civilian employees, warning that data compromised in the recent breach at the Office of Personnel Management (OPM) also included fingerprint records.

“The interagency team has now concluded with high confidence that sensitive information, including the Social Security Numbers (SSNs) of 21.5 million individuals, was stolen from the background investigation databases,” said Thomas W. Hicks in performing the duties of the Under Secretary of the Navy.

“This includes 19.7 million individuals that applied for a background investigation, and 1.8 million non-applicants, predominantly spouses or co-habitants of applicants. Some records also include findings from interviews conducted by background investigators and approximately 1.1 million included fingerprints.”

Late last week, OPM announced the results of the interagency forensics investigation into the second known security breach at the agency involving federal background investigation data, increasing the confirmed number of current, former, and prospective federal employees, military members, and contractors impacted by the breach.

“If an individual underwent a background investigation through OPM in 2000 or afterwards, it is highly likely that the individual is impacted by this cyber breach. If an individual underwent a background investigation prior to 2000, that individual still may be impacted, but it is less likely,” Hicks said.

As more forensics and analysis is completed on this attack, expect further bad news before we start hearing anything good come out of this breach.