IBM | Georgia Tech Procurement Assistance Center

A software glitch in the government procurement system for contractor work exposed significant amounts of personal and private data of individuals and companies — including Social Security, business tax identification and bank account numbers — open for viewing. The problem could leave many individuals and companies potentially open to a significant threat of identity theft.

The General Services Administration sent an email to parties registered on the System for Award Management, or SAM, on Friday, warning them of the problem, according to a copy obtained by MoneyWatch. The message states that registered SAM users with the proper set of assigned rights “had the ability to view any entity’s registration information, including both public and non-public data at all sensitivity levels.”

SAM is an attempt to consolidate multiple government procurement systems. It is part of a major e-government presidential initiative from 2002 that was expected to take until 2015 to complete and that had spent $54.8 million in fiscal year 2012. IBM is the contractor that build the system and the GSA has had concerns about the software’s performance.

Contractors must provide extensive detailed information about themselves or their organizations, including bank account numbers for payment transfers, tax payer identification and contact details. Such information can be used by criminals to steal the identity of individuals or even corporations. Identity theft is difficult to correct once it happens.

According to a GSA bulletin, the software problem was actually discovered on March 8, 2013, and fixed two days later. However, there is no information posted on how long the vulnerability existed, how many people might have been identified, or even if the software had been written in such a way to identify whose records might have been accessed. The GSA notes that it is undertaking a “full security review” of the system.

Keep reading this article at: http://www.cbsnews.com/8301-505124_162-57574681/gsa-system-shows-contractors-private-information/

For additional information, see the SAM security vulnerability FAQs.
Starting Monday, March 18, at 8 a.m., you may call the FedInfo hotline at 1-800-FED-INFO for immediate support.
For the latest news involving SAM, visit: http://gtpac.org/tag/sam.

SAM shows contractors’ private information, now fixed

Contracting News

Federal contractor indicted for stealing over $1.2 million from the U.S. Postal Service

CMMC announces new advisory council to collect industry feedback

EEOC announces April 26 opening date for the collection of 2019 and 2020 EEO-1 component 1 data

Contractors line up to rebuild MARTA’s Five Points Station

GDOT announces $828.8 million in projects to transform Ga. 316

Contracting Tips

A whole new marketplace: GSA’s “commercial platforms” initiative

CRS Reports: Mentor-Protégé programs and small business size standards

CRS Report: Small businesses and COVID-19, relief and assistance resources

How do I find out what the government is buying?

Past performance isn’t always a required evaluation factor, says GAO

GTPAC News

SBA hosting “Contract Bonds and Surety Bond Guarantee” webinar April 20th

GSA hosting “Getting on the GSA Schedule” webinar April 13th

NIH hosting 2021 small business program conference April 26-30th

Defense Counterintelligence and Security Agency hosting industry day and matchmaking May 6th and 20th

Missile Defense Agency hosting virtual conference May 11-13th

Georgia Tech News

Georgia Tech creates new Office of Corporate Engagement

Delta Jacket wins 2021 Georgia Tech InVenture prize

Future of 5G is under the microscope at Georgia incubator

Collective worm and robot “blobs” protect individuals, swarm together

The Partnership for Inclusive Innovation is now accepting applications for pilot programs