The Office of the Inspector General for the U.S. Department of the Interior issued a report criticizing the department's cybersecurity practices, TechCrunch reports. The OIG investigators found they could easily "crack thousands of employee user accounts" because lax security practices allowed passwords, such as "Password1234." The report detailed how agencies within the department "bucked nearly two decades of the government’s own cybersecurity guidance," which requires two-factor user authentication.
11 Jan. 2023
OIG report finds US Department of Interior allows easily guessable passwords
Related stories
Ireland's DPC details legitimate interest prong of its LinkedIn enforcement action
Notes from the IAPP Europe: Wrapping up November with the IAPP DPC
IAPP DPC 2024: Reynders discusses GDPR enforcement harmonization, adequacy developments
US Senate subcommittee ponders accountability for AI-assisted scams
Tracking evolving policy paradigms in a hallmark year for AI governance
