You are here

It’s NOT the FTC calling about the OPM breach

Share this page

If you’re an OPM data breach victim, you probably know to look out for identity theft. But what about imposter scams? In the latest twist, imposters are pretending to be the FTC offering money to OPM data breach victims.

Here’s how it works: A man calls and says he’s from the FTC and has money for you because you were an OPM data breach victim. All you need to do is give him some information.

Stop. Don’t tell him anything. He’s not from the FTC.

One fake name the caller used was Dave Johnson, with the FTC in Las Vegas, Nevada. There’s not even an FTC office in Las Vegas. The FTC won’t be calling to ask for your personal information. We won’t be giving money to OPM data breach victims either.

That’s just one example of the type of scam you might see. You may get a different call or email. Here are some tips for recognizing and preventing government imposter scams and other phishing scams

  • Don’t give personal information. Don’t provide any personal or financial information unless you’ve initiated the call and it’s to a phone number you know to be correct. Never provide financial information by email. 
  • Don’t wire money. The government won’t ask you to wire money or put it on a prepaid debit card. Also, the government won’t ask you to pay money to claim a grant, prize or refund.
  • Don’t trust caller ID. Scammers can spoof their numbers so it looks like they are calling from a government agency, even when they are not. Federal agencies will not call to tell you they are giving you money. 

If you’ve received a call or email that you think is fake, report it to the FTC. If it’s an email that relates to the OPM breach, you also can forward it to US-CERT at If you gave your personal information to an imposter, it’s time to change those compromised passwords, account numbers or security questions.

Concerned about identity theft? Visit For more information about the OPM breach, visit OPM’s website.


Like to know

I have received one email from of money my found.

It's so much fraud and you should never give personal information over the phone or online to anyone you don't know. This is a no brainer people.

Thank you for all the information you send on scams....very helpful

Got an e mail from Nigeria..regarding some nonsense about a debit card and a $75.00 dollar fee. Deleted it immediately but now Im concerned. Could the e mail infect my system and steal my data?

Hi nab1110,

Please click on this link for more information. It's also best to not open any unwanted or suspicious emails, and simply delete them to avoid any malware or spyware from potentially getting into your computer.

Thank you.

Anyone see any irony in an anonymous person giving you a link to open to find out more about phishing. I'm sure it's legit, I just found it amusing.

Yes the link it will send you to is legitimate: The link is "HTTP://".

Not really that ironic as all comments are reviewed before being posted. I doubt the FTC would allow a link to a scam to be posted.

I got an email saying CSID was the company providing identity theft protection. How do I know this is an email from OPM CIO as it claims?

The email will come from this address: If you get an email about the breach from a different address, then it’s a scam. Don’t click on any links or provide any personal information.

For more information, please see our previous post, Email from OPM – is it the real deal?

I have received 4 or 5 emails from: support They are asking me to log in and check the alerts. I do not remember if I even signed up with CSID. I remember doing something but it was with OPM. I am really confused now as to what is going on! I just received a new message today so I decided to check it out.

I received an email from a company called CSID stating that my identity was impacted by the OPM security breach. How can I know if this email is from CSID?

I had this fool call me. Give me a BS story. I asked for a address just in case. I then told him I live in Vegas and that address is in a residual part of the city. Hung up. End of game.


since my personnel information was not protected, and now "someone" on the black market has my detailed personnel information. Why do we only get offered 18 months of monitoring from CSID and why can't w pick our own company to monitor our info?

I agree with you. Why should I trust the Government to come up with the best tool to monitor my credit when they failed to protect my personal information in the first place. I pay for my own monitoring.

Received a hard copy letter from CSID, the website asks for a full SSN. Is it legit to provide such information?

If you were affected by the personnel data incident, you have   access to identity theft insurance and full-service identity restoration from CSID.

You can choose to enroll in other services. In general, if you want a company to monitor your accounts or see if anyone is misusing your Social Security number, you have to give the company information about yourself so they know what to check.

You can learn more about what OPM is doing at

Should we also notify the IRS in writing of the ID theft using the IRS form (Form 14039)?

If you know someone misused your personal information, go to to find out what to do right away.

If you know someone misused your information for income tax purposes, look at the "Other Steps" on They tell what to do in case of tax related ID theft. If you have tax related ID theft, you'll prepare the IRS affidavit form 14039.

If you get a notice that your personal information was exposed in a breach, but you haven't seen signs that anyone has misused your information, you wouldn't fill out the IRS affidavit form 14039. This page on tells what to do if your information was exposed in a breach.

Back about 2004 CECOM (I am a civilian) had a breach of PII. This was the first of many to follow, all of which have been government breaches. At that time we were offered credit monitoring for 1yr thru Equifax for all 3 credit bureau's and I continue to pay for this service to this day. Why should I increase this coverage with ID Experts? I am not asking for reimbursed or 3 future years funds. And also why do we have to take the initiative to start the "identity" portion of checks/ monitoring my PII? My opinion is to many companies being provided the information we wish to safeguard to safeguard.
Also, on the clearance background checks possible breach of immediate family/ business and personal acquaintances- only if they are under age 18 will this service be provided? What's up with that?

Go to for the most current information.

The OPM website states that it is offering

  • credit and identity monitoring, identity theft insurance, and identity restoration services for the next three years through ID Experts

to people affected by the background investigations report breach and to their dependent minor children who were under age 18 as of July 1, 2015.

I have been receiving calls from a scammer company trying to get me to pay for a payday loan from 2009. They were able to tell me my SS#, my old banking info and even called my emergency contact to threaten and try to intimidate us into paying the $950. They say they are going to proceed immediately if we do not pay now. It's all a scam and very annoying that they are constantly calling and now calling relatives and making them believe it's legit. They say they are from Global Solutions an arbitration company, African accent, and working with cells phones from different area codes. They will not provide an address but say they have 48 remote locations.

You're right, a scammer may have some of your personal information and use it to try and sound legitimate.

These are useful details for a complaint. Please report this to the FTC at The information goes into a database that law enforcement uses for investigations.

I just wired some money and my bank account information to a lawyer in Nigeria, and I am anxiously waiting for my $25,000,000 to be deposited into my bank account!

If you give someone your bank account number, you make it possible for them to take your money.

Very funny Mr. Brain. I hope no one really thinks you did that.

I just want to confirm that the letter I received from CSID, (supposedly) signed by Donna K. Seymour, Chief Information Officer, US Office of Personnel Management, is legit. I sent an email to OPM back in June, asking this same question, never received a response. Perhaps someone will respond on here.

Suggest you read the OPM pages regarding the services they are providing and by whom. I have used CSID and it is legit. It is not a government office or agency but a contracted information security business.

Thank you.

Go to the website and verify.

My neighbor received a phone call last month, saying it was the IRS, and they were going to sue her. It scared her because she was then working with IRS over a forged refund check . IRS does NOT call individuals for this reason. Former employee

Because of forged check deposited into my account Bank Liberty wants to close my account accusing me of being the one doing it

If someone forged your signature or misused your bank account number, contact your bank's fraud department.

Go to to see what to do when someone steals your personal or financial information.

I would just like a clear answer if information on Federal retirees was compromised - we keep hearing about current employees but what about our data?????

Go to for the most up to date information.  There are also questions and answers on

The OPM site says that in April 2015, OPM discovered that the personnel data of 4.2 million current and former Federal government employees had been stolen. Information including full names, birth dates, home address and Social Security numbers was affected. If you were affected by this, you should have gotten a notice from OPM by now.

OPM also discovered that some background investigation records of current, former, and prospective Federal employees and contractors were stolen. As of today, OPM hasn't started sending notices about the background investigation breach.

What if we've moved since our last investigation was done? How will OPM be able to reach us to let us know and provide us with the information?

Go to for the most current information.

OPM's website says that if you had a background investigation through OPM in 2000 or later, it's very likely that you are impacted by the incident involving background investigations.

As of September 11, 2015,  the OPM site says the Government makes every attempt to verify current mailing addresses of people who were affected. OPM will provide updates on how the verification process will work.

OPM expects to begin notifying people by late September.

So who are all these people giving advice -bridget small etc. Richard Cranium (alias for dick head) is the only one clearly a clown.

Many of the responses are from FTC staff, including cmiranda, ctressler and me (Bridget Small). You'll see that our responses often link to other FTC content and resources.

So who's bright idea was it to place this information where it could be hacked? Was it placed there for convenience? Too much sensitive information is placed where it can be accessed from the internet. Whoever did this needs to be disciplined and owes a lot of people a formal apology at the least.

Even more suspicious since our comments need to be reviewed before posted! Are Identity Theft Solutions LLC doing the reviewing?

OK, reviewed the info they have on my finances. Everything on there is related to credit cards and such. There was nothing on there with checking, savings, or CDs. Is this an oversight by the credit burrows or OPM. If these accounts are supposed to be a part of this protection, then how is that information included in what they are watching? You can use a lot with those accounts above and beyond the credit cards.

Your credit reports have information about where you live, how you pay your bills, your credit and debts, and whether you have ever been sued or filed for bankruptcy. This FTC article about Free Credit Reports explains more. The credit reporting companies sell the information in your report to creditors, insurers, employers, and other businesses that use it to evaluate your applications for credit, insurance, employment, or renting a home.

Credit reports do not typically include information about your checking and savings accounts or your investments. has information for people affected by the data breaches. It includes information about the services available to data breach victims.

Getting this type of Letter..

Anti-Terrorist And Monetary Crimes Division     FBI Headquarters, Washington, D.C.     Federal Bureau Of Investigation     J.Edgar Hoover Building 935 Pennsylvania Avenue, Nw Washington, D.C. 20535-0001

ATTENTION: BENEFICIARY This e-mail has been issued to you in order to Officially inform you that we have completed an investigation on an International Payment in which was issued to you by an International Lottery Company. With the help of our newly developed technology (International Monitoring Network System) we discovered that your e-mail address was automatically selected by an Online Balloting System, this has legally won you the sum of $2.4million USD from a Lottery Company outside the United States of America.

During our investigation we discovered that your e-mail won the money from an Online Balloting System and we have authorized this winning to be paid to you via INTERNATIONAL CERTIFIED BANK DRAFT. Normally, it will take up to 5 business days for an INTERNATIONAL CERTIFIED BANK DRAFT by your local bank. We have successfully notified this company on your behalf that funds are to be drawn from a registered bank within the world winded, so as to enable you cash the check instantly without any delay, henceforth the stated amount of $2.4million USD has been deposited with IMF.

We have completed this investigation and you are hereby approved to receive the winning prize as we have verified the entire transaction to be Safe and 100% risk free, due to the fact that the funds have been deposited with IMF you will be required to settle the following bills directly to the Lottery Agent in- charge of this transaction whom is located in Cotonou, Benin Republic.

According to our discoveries, you were required to pay for the following, (1) Deposit Fee's ( IMF INTERNATIONAL CLEARANCE CERTIFICATE ) (3) Shipping Fee's ( This is the charge for shipping the Cashier's Check to your home address) The total amount for everything is $96.00 We have tried our possible best to indicate that this $96.00 should be deducted from your winning prize but we found out that the funds have already been deposited IMF and cannot be accessed by anyone apart from you the winner, therefore you will be required to pay the required fee's to the Agent in-charge of this transaction

In order to proceed with this transaction, you will be required to contact the agent in-charge ( MR. NICHOLAS SMITH ) via e-mail. Kindly look below to find appropriate contact information: CONTACT AGENT NAME: MR. NICHOLAS SMITH E-MAIL:officeimf    PHONE NUMBER: +229-68690856 You will be required to e-mail him with the following information: FULL NAME: ADDRESS: CITY: STATE: ZIP CODE: DIRECT CONTACT NUMBER: OCCUPATION:

You will also be required to request Western Union or Money Gram details on how to send the required $96.00 in order to immediately ship your prize of $2.4 million USD via INTERNATIONAL CERTIFIED BANK DRAFT from IMF, also include the following transaction code in order for him to immediately identify this transaction : EA2948-910. This letter will serve as proof that the Federal Bureau Of Investigation is authorizing you to pay the required $96.00 ONLY to MR. NICHOLAS SMITH via information in which he shall send to you,

MR. JAMES COMEY Federal Bureau of Investigation F B I Yours in Service, Photograph of Director JAMES COMEY,III JAMES COMEY, III Director      Office of Public Affairs Re: FBI Headquarters, Washington, D.C. (Be Aware!!!)

What is the difference in our CSID coverage and ID Experts coverage? I noticed the terms are different 18 mos vs 3 years yet the coverage seems similar.

OPM has posted questions and answers for people affected by the security breaches.

You can also subscribe for OPM email updates.

If I received a PIN and a letter from the OPM for supposedly more protection for the compromise. Having my 25 digit PIN and my last 4 numbers of my SS# should be enough. I am VERY WARY of then giving my entire address and entire SS# after I have entered my PIN and last 4 digits. If you sent a letter to me, THEN you have my information and you know where I live. I do NOT want to give more info via internet for more compromised availability. Surely our government is not this stupid, compromising more???? Why not give a NEW 25 digit SS# to those compromised???? Do you think this will magically stop AFTER 3 years? They cyber attackers will wait 3 years, use your brains people.

Someone keeps trying to take control of my laptop. Severl times this eveing tey have slowed my typing, taken me to locations I do not want to be and taken contorl of my cursor. Each time, i go to my browser (safari) clear history then go to a cleaner and erase my cache and then ru a scan. I come back and all is normal for a whil and they start again. What is up> Yes I was collected - as a former, fingerprinted, BI person Help. tiockges


Leave a Comment