The Office of the Inspector General for the U.S. Department of the Interior issued a report criticizing the department's cybersecurity practices, TechCrunch reports. The OIG investigators found they could easily "crack thousands of employee user accounts" because lax security practices allowed passwords, such as "Password1234." The report detailed how agencies within the department "bucked nearly two decades of the government’s own cybersecurity guidance," which requires two-factor user authentication.
11 Jan. 2023
OIG report finds US Department of Interior allows easily guessable passwords
RELATED STORIES
Privacy in Arkansas: Is Arkansas ready for a consumer privacy law?
A view from DC: CFPB calls for states to regulate financial privacy
Notes from the IAPP Canada: OPC's WADA investigation 'raises some interesting issues'
A view from Brussels: European Commission's new tech policy center of gravity
First fine imposed under Thailand's Personal Data Protection Act
