Several federal agencies have failed to protect Americans’ personal information for the past ten years, according to a report from the Senate Permanent Subcommittee on Investigations released Tuesday.
The subcommittee spent 10 months investigating multiple federal agencies: the Departments of State, Homeland Security (DHS), Health and Human Services (HHS), Transportation (DOT), Education, Agriculture (USDA), Housing and Urban Development (HUD) and the Social Security Administration (SSA), according to The Hill.
Seven of the agencies they investigated failed to provide adequate protection for Americans’ personal information, the report found. Six of those agencies hadn’t installed specific defenses against cyberattacks quickly enough, and all eight of the agencies investigated did not use “legacy systems,” which left them open to even more cyberattacks.
The DHS, DOT, USDA and HHS did not address cybersecurity weaknesses that had been identified over 10 years ago. DHS is tasked with fighting cyberattacks. The SSA has cybersecurity issues that could result in the release of more than 60 million Americans’ personal information, The Hill reported. (RELATED: NYT: Pentagon, Intel Officials Have ‘Broad Hesitation’ To Tell Trump Details About Russian Operations, Sources Say)
Acting Homeland Security Secretary Kevin McAleenan prepares to testify before the Senate Homeland Security Subcommittee May 2, 2019 in Washington, DC. (Win McNamee/Getty Images)
This report also noted that the DOE hasn’t been able to protect itself against unauthorized devices connecting to its network. This issue dates back to 2011, and although they have since have limited access to 90 seconds, it is still too much time, the Inspector General (IG) stated.
“Hackers with malicious intent can and do attack federal government cyber infrastructure consistently. In 2017 alone, federal agencies reported 35,277 cyber incidents,” said Rob Portman, the Republican subcommittee Chairman, according to The Hill. “Yet our federal agencies have failed at implementing basic cybersecurity practices, leaving classified, personal, and sensitive information unsafe and vulnerable to theft.”
Cyberattack threats have grown in recent years. The U.S. approved of cyberattacks against Iran last week after stopping a military attack, and the city of Baltimore was held up by a huge cyberattack in May.
The U.S. experienced the largest hacking of an American government agency in 2015 after a hacker breached the Office of Personnel Management and exposed sensitive information of over 21 million people. A year before, the United States Postal Service had a digital breach that released over 800,000 former and current postal employees, including Social Security numbers.
The subcommittee recommended progress reports for all of the agencies. These progress reports would include how they intend to fix cybersecurity issues, and would be given to Congress in addition to budget justifications.
All content created by the Daily Caller News Foundation, an independent and nonpartisan newswire service, is available without charge to any legitimate news publisher that can provide a large audience. All republished articles must include our logo, our reporter’s byline and their DCNF affiliation. For any questions about our guidelines or partnering with us, please contact licensing@dailycallernewsfoundation.org.