Businessweek
Cybersecurity

When Spotting a Hack Doesn’t Help You

Ben Cotton diagnosed a massive federal breach, then got stiffed.
Photographer: Simon Dawson/Bloomberg
Contact us:
Provide news feedback or report an error
Confidential tip?
Send a tip to our reporters
Site feedback:
Take our SurveyNew Window
By Paul Barrett
Lock
This article is for subscribers only.
This article is part of the October 31, 2016 issue of businessweek.
Chevron Right

On April 21, 2015, Ben Cotton visited the U.S. Office of Personnel Management in downtown Washington to pitch his small cybersecurity company, CyTech Services. He loaded proprietary diagnostic software onto five servers running on OPM’s network. Uh-oh, the chief executive told his hosts, “you’ve got a big problem here.”

Over subsequent months, OPM—the federal government’s HR department—acknowledged it had suffered massive data thefts, which U.S. officials attributed to Chinese intruders. The stolen material included personnel records and background-check data for more than 22 million current and former government officials.

HomeBTV+Market DataOpinionAudioOriginalsMagazineEvents
News
MarketsEconomicsTechnologyPoliticsGreenCryptoAI
Work & Life
WealthPursuitsBusinessweekCityLabSportsEqualityManagement & Work
Market Data
StocksCommoditiesRates & BondsCurrenciesFuturesSectorsEconomic Calendar
Explore
NewslettersExplainersPointed News QuizAlphadots GameThe Big TakeGraphicsSubmit a TipAbout Us
Terms of ServiceTrademarksPrivacy Policy
CareersAdvertise
Ad Choices
Help©2026 Bloomberg L.P. All Rights Reserved.