The USPS has confirmed that some Postal Service employees are unknowingly providing their usernames and passwords to criminal websites, while attempting to access PostalEase.
It is reported that employees are using Google and attempting to access PostalEase; however, Google in-turn has been redirecting users to criminally run websites that mirror the look and access of PostalEase.
The USPS Corporate Information Security Office (CISO) is working with the Postal Inspection Service to facilitate notice to the impacted employees. The NPMHU is told that formal notification to all employees is forthcoming. We will post that notice when it is released.
The USPS reports that representations have been made at the district level confirming Postal Inspectors are contacting impacted employees, as well as employees who may have unknowingly been compromised, and requesting their EINs and passwords.
Please note . . . Postal Inspectors have not contacted postal employees and requested their EINs and/or passwords. Employees should never provide usernames and/or passwords to anyone.
Financially impacted employees should immediately contact the Eagan ASC Helpdesk at 866-974-2733. Staff members are available to assist.
If you become aware of any employee experiencing access issues to PostalEase, they should immediately contact 877-477-3273 to request assistance.
We will provide you with any additional information when it is made available to the NPMHU.