The Department of Energy (DoE) Inspector General (IG) warned in a July 6 summary of findings that department’s Office of Science lacked proper peripheral device security, leaving the agency exposed to the possibility of network compromise. […]
A Federal grand jury in Washington, D.C., indicted Charles Edwards, former acting inspector general (IG) at the Department of Homeland Security (DHS), today on 16 charges, including theft of “sensitive government databases containing personal identifying information (PII)” of DHS and U.S. Postal Service (USPS) employees. […]
In a wide-ranging audit by Inspectors General (OIGs) spanning more than seven key agencies, only one – the Department of Defense – was flagged for lack of compliance with the Cybersecurity Information Sharing Act of 2015, which promotes the sharing of cybersecurity threat data. […]
The Treasury Department Office of the Inspector General (OIG) reported that the agency’s cyber threat indicators in Calendar Year (CY) 2017 and CY2018 were “adequate and aligned with the provisions of CISA [the Cybersecurity Information Sharing Act of 2015]” in an audit released on Dec. 10. […]
The Office of Personnel Management (OPM) Office of the Inspector General (OIG) recommended improvements to OPM’s security management, logical access, and configuration management in an audit of the agency’s financial records released on Nov. 18. […]
The Department of Energy’s (DoE) Office of the Inspector General (OIG) reported numerous cybersecurity weaknesses at DoE and issued 54 recommendations to the agency throughout Fiscal Year 2019, according to a report released on Nov. 19. […]
The Federal Election Commission (FEC) is missing effective IT governance and struggles with internal cyber vulnerabilities, according to an FEC Office of Inspector General (OIG) report released on Nov. 19. […]
House Inspector General (IG) Michael Ptasienski recommended “centralizing procurement for commodity items and standardizing office technology and support” at a Committee on the Modernization of Congress hearing on Nov. 15. […]
The National Aeronautics and Space Administration (NASA) is a target for cybercriminals, but the agency is failing to adequately protect itself, according to a Nov. 13 report by the NASA Office of the Inspector General (OIG). […]
The Federal Maritime Commission (FMC), the agency regulating U.S. international ocean transportation, is not responding to cybersecurity vulnerabilities in a timely manner, according to a FISMA audit from its Office of the Inspector General (OIG). […]
The Federal Labor Relations Authority (FLRA) continues to meet Federal Information Security Modernization Act (FISMA) requirements with few areas of concern, according to a report by the FLRA Office of the Inspector General (OIG) released on Oct. 30. […]
A spotty risk management strategy, along with poor security control assessment procedures, are undermining the Federal Deposit Insurance Corporation (FDIC)’s ability to identify and detect network security threats, according to an FDIC Office of the Inspector General (OIG) report released on Oct. 23. […]
The U.S. Securities and Exchange Commission (SEC) needs to improve its IT investments management, according to a new SEC Office of Inspector General (OIG) report. […]
Department of Homeland Security Inspector General John Kelly reported to the House Appropriations Committee’s Homeland Security Subcommittee today that DHS lacks the right technological systems to keep track of separated families and unaccompanied minors, and has difficulties hiring cybersecurity employees. […]
The inspector general for the Federal Deposit Insurance Corporation (FDIC) last week released a report on top challenges for the agency, which includes both ensuring effective cybersecurity oversight of banks and implementing strong information security policies within the agency. […]
The U.S. Government Publishing Office’s (GPO) Office of Inspector General (IG) has flagged three continuing IT control issues at GPO involving access controls, separation of duties, and drafting of contingency plans in the event of service network service interruptions. […]
The Department of Transportation’s (DoT) Inspector General has flagged several broad cybersecurity categories as “top management challenges” for the agency in FY 2019, including what it called some “longstanding security weaknesses.” […]
A report from the Department of Health and Human Services (HHS) Office of the Inspector General (OIG) found that the Center for Medicare and Medicaid Services (CMS) did not adequately secure the Medicare enrollment system, which is the primary source of information for the beneficiary population. […]
The State Department’s Office of Inspector General (OIG) has issued a new report that flags security control issues for a data analytics test network and internal case management system operated by the Bureau of Consular Affairs’ Office of Fraud Prevention Programs (OFPP), and reported that OFPP is taking steps to resolve the problem. […]
The Environmental Protection Agency’s (EPA) inspector general found that a share folder within one of the agency’s regions did not meet National Institute of Science and Technology (NIST) standards for account management, which left sensitive data at risk. […]
The Office of the Inspector General (OIG) found that the General Accountability Office (GAO) isn’t fully compliant with the Federal Information Security Modernization Act of 2014 (FISMA), according to a report released yesterday. […]
The Council of Inspectors General on Integrity and Efficiency launched a website on Oct. 2 that will house all IG reports. Before Oversight.gov was created, the IGs of each agency posted their reports on their own sites. […]