After-the-Hack Survival Guide

Post Breach Rules Require Password Resets

Remember that huge GSA hack? Remember how they subsequently lost all your usernames and passwords? Now it’s time to deal with the fallout.

Since then, GSA assessed “the underlying vulnerability in all of its information systems and is immediately applying stricter security measures, including more stringent password management and Multi-Factor Authentication”. The measures apply to eBuy, Advantage Spend Analysis Program (ASAP), Schedule Input Program (SIP), Reverse Auctions and 72A Reporting System accounts.

What does this mean for contractors? For 72A reporting, you’ll have to visit https://72a.gsa.gov/ to reset your password. VSC users should have received an email with links and instructions to reset your VSC password. In case it got filtered to your spam, you can find reset instructions here. System features will be inaccessible until you reset your password. GSA advises users having trouble to contact the Vendor Support Center Monday through Friday8:00 a.m. to 5:30 p.m. EDT at 877-495-4849 or vendor.support@gsa.gov. Through tomorrow (12 June), VSC offers extended hours of 8:30 a.m. to 9:30 p.m. If this is all way too confusing for you, we are here to help at 301-913-5000 or admin@ezgsa.com.