Basic security controls could have prevented the breach that exposed the personal data of more than 21 million current and former government employees, according to a congressional report.
The 2015 breach at the US Office of Personnel Management (OPM) included 19.7 million background investigation applications and 1.8 million non-applicants.