The hack that compromised the identities of 4 million current and former government employees could have been avoided if the government updated its OS.

Really.

According to recent statements made by the House Oversight and Government Reform Committee, the Office of Personnel Management neglected to update its computer systems for years. In fact, the system was so old that an internal audit recommended that the OPM shut down its networks completely to rebuild its cybersecurity measures.

The people in charge of maintaining the OPM’s network also lacked any expertise in data security or information technology. Imagine having a 25 year-old lock on your front door and then hiring a mailman to make sure it still worked. Would you be surprised when someone broke in?

Committee Chairman Jason Chaffetz puts it best: “You failed utterly and totally.”

When the government isn’t bothering to update its firewall, private companies with actual IT staff members are stepping up to fill the void. Be sure to trust the right people with you info.