The Postal Service has notified the APWU of some suspicious activity that the USPS Information Technology team detected in regards to PostalEase. It was determined that approximately 25,000 employees across all crafts showed some sort of “suspicious activity” on PostalEase. According to the Postal Service, after an extensive investigation, there is no evidence of any actual intrusion, any actual hack, or any fraud having been committed. However, out of an abundance of caution, the Postal Service has limited access to those 25,000 accounts.
Affected account holders will need to contact HRSSC to reset their credentials to be able to login. Affected employees will receive a letter that will contain this language:
I am writing to inform you that the United States Postal Service’s Corporate Information Security Office (CISO) has detected unusual log-in activity in the PostalEase system, potentially affecting your PostalEase account. We believe this access is unauthorized and your account information may be at risk of exposure. PostalEase is a self-service web application that serves as your gateway to many postal financial-related services.
CISO investigated and took precautionary measures to prevent further activity as soon as we became aware of the unusual activity. CISO monitors daily for suspicious activity to protect you and your information.
Postal Service information security policy prohibits any use of your account, log-on ID, password, personal information number (PIN), and tokens by a third party, regardless of whether it was authorized by the account holder. Never share your log-in credentials or other information with anyone.
Your PostalEase account has been placed in a hold status, pending a password reset. To initiate a password reset, you will need contact 1-877-477-3273, Option 5. Please remember, your new password will be used to access all your LiteBlue self-service applications, including PostalEase.
For questions involving this notification, please contact 1-877-477-3273, Option 5.
As we learn more and get more information, we will share it.