US officials investigating China's epic hack 'either need serious help or need to come clean now'

A database containing the classified personnel records of US spies may have been merged with the database of the Office of Personnel Management (OPM) before it was hacked, Shane Harris of the Daily Beast reports.

When administration officials asked intelligence agencies in 2010 to merge their records with OPM’s, thereby creating a unified security clearance system, intelligence officials initially refused to comply.

They refused out of concern that combining Scattered Castles — the name of the US spy agency database — with OPM’s database of federal employees could give hackers access to the identities of covert operatives if the mega-database ever suffered a breach.

By 2014, however, OPM security clearance files were being uploaded into Scattered Castles’ database, beginning a process of linking the databases.

“If there are connections between the two — as that recent government report suggests there are — it could be exploited by hackers, giving them a pathway from OPM into the most highly classified personnel records in the entire government,” Harris reports.

US officials contacted by the Daily Beast denied that Scattered Castles was affected by the OPM hack, but never said explicitly that the two databases themselves were not linked.

“I have high confidence that the agencies do not have a clear understanding of the architecture of their systems and how they’re interconnected,” Michael Adams, who served more than two decades in the U.S. Special Operations Command, told The Daily Beast.

Adams noted that because administration officials lack this understanding, they cannot say with certainty that the intelligence community’s records were unaffected by the hack.

“I further believe that the U.S. government either doesn’t understand or is obfuscating the national-security implications of this cyberattack. These people either need serious help or need to come clean now.”

Office of Personnel Management (OPM) Director Katherine ArchuletaAPOffice of Personnel Management (OPM) Director Katherine Archuleta testifies on Capitol Hill in Washington, Tuesday, June 16, 2015.

If they were linked, then hackers who infiltrated OPM’s database, stealing the sensitive security clearance and background information of more than 18 million federal employees, were likely able to steal the same information from the nation’s spies.

The massive hack, allegedly perpetrated by the Chinese, was “classic espionage” on an unprecedented scale, a senior administration official told the New York Times.

Jeff Stein of Newsweek reported last week that the hackers who infiltrated OPM also breached FBI agents’ personnel files in the process.

Joel Brenner, who from 2006 to 2009 served as the Intelligence Community’s top counterintelligence official, described the hack to AP as “crown jewels material, a goldmine” for China, adding: “This is not the end of American human intelligence, but it’s a significant blow.”

Office of Personnel ManagementMark Wilson/Getty ImagesThe Theodore Roosevelt Federal Building that houses the Office of Personnel Management headquarters is shown June 5, 2015 in Washington, DC. U.S. investigators have said that at least four million current and former federal employees might have had their personal information stolen by Chinese hackers.

“I’m really glad to be out of the game,” arecently retired CIA senior operations officertold former NSA intelligence analyst John Schindler in aDaily Beast article.

“There’s bad, there’s worse — and there’s this,” he said, referring to the breach. “CIA officers are not supposed to be anywhere in OPM files, but I’m glad I’m not posted overseas right now, hoping that’s true.”

Hackers who infiltrated OPM had access to the agency’s security clearance computer system for over a year, giving them ample time to steal as much information as possible from OPM’s database of military and intelligence officials — and ample time to uncover a pathway to Scattered Castles, if such a pathway existed.

Check out the full report at the Daily Beast >

NOW WATCH: Why Putin is the most powerful man in the world

Business Insider Emails & Alerts

Site highlights each day to your inbox.

Follow Business Insider Australia on Facebook, Twitter, LinkedIn, and Instagram.