The termination of cybersecurity lead Jonathan Kamens from the US Digital Service has introduced significant risk to the security of VA.gov, the essential digital platform used by US veterans. The site, relied upon by over 20 million users for sensitive personal and medical data, may suffer in its cybersecurity practices, potentially leading to future incidents where veterans’ private information could be exposed. With Kamens' role being crucial in the maintenance and protection of VA.gov, his abrupt dismissal raises concerns of neglect and the potential for privacy violations impacting millions of veterans.
Source: https://www.wired.com/story/doge-usds-purge-veterans-affairs-site-cybersecurity/
TPRM report: https://scoringcyber.rankiteo.com/company/department-of-veterans-affairs
"id": "dep000022425",
"linkid": "department-of-veterans-affairs",
"type": "Cyber Attack",
"date": "2/2025",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 'Over 20 million veterans',
'industry': 'Government',
'location': 'United States',
'name': 'US Digital Service',
'type': 'Government Agency'}],
'data_breach': {'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Data', 'Medical Data']},
'description': 'The termination of cybersecurity lead Jonathan Kamens from '
'the US Digital Service has introduced significant risk to the '
'security of VA.gov, the essential digital platform used by US '
'veterans. The site, relied upon by over 20 million users for '
'sensitive personal and medical data, may suffer in its '
'cybersecurity practices, potentially leading to future '
'incidents where veterans’ private information could be '
"exposed. With Kamens' role being crucial in the maintenance "
'and protection of VA.gov, his abrupt dismissal raises '
'concerns of neglect and the potential for privacy violations '
'impacting millions of veterans.',
'impact': {'data_compromised': ['Personal Data', 'Medical Data'],
'identity_theft_risk': 'High',
'operational_impact': 'Potential for privacy violations',
'systems_affected': ['VA.gov']},
'post_incident_analysis': {'root_causes': 'Termination of key cybersecurity '
'personnel'},
'title': 'Termination of Cybersecurity Lead at US Digital Service Introduces '
'Risk to VA.gov',
'type': 'Potential Data Breach',
'vulnerability_exploited': 'Lack of Cybersecurity Leadership'}