The inspector general at GSA says his agency has failed to apply its own IT security requirements. Auditors found lax password management for database administrator accounts and database and operating system software that wasn’t securely configured. They say the weaknesses stem from security officials who didn’t apply key requirements from the agency’s IT security policy. GSA says it agrees with the findings. The IG recommends the agency better monitor how security officials apply policy requirements.

This story is part of Federal News Radio’s daily Cybersecurity Update brought to you by Tripwire. For more cybersecurity news, click here.

Copyright © 2025 Federal News Network. All rights reserved. This website is not intended for users located within the European Economic Area.