Computing

The U.S. government is worse at cybersecurity than just about everyone else

By

Cybersecurity Act of 2012 SECURE IT Act
Looking for another reason to mistrust the government? Its shoddy cybersecurity practices may be just the ammunition you need. New data from security risk benchmarking startup SecurityScorecard suggests that when it comes to safe practices online, U.S. federal, state, and local government agencies rank dead last in comparison to 17 major private industries, including transportation, retail, and healthcare. The report examined the “overall security hygiene and security reaction time” of government institutions, paying special attention to NASA, the FBI, and the IRS, all of which were hacked earlier this year.

Topics of interest included vulnerability to malware infections, exposure rates of passwords, and susceptibility to social engineering, among other criteria.

The results were none too complimentary for our government. “Across all industries surveyed by SecurityScorecard,” the report notes, “U.S. government organizations received the lowest security scores. SecurityScorecard tracked 35 data breaches among all U.S. government organizations between April 2015 and April 2016.”

The biggest deficiencies were found within three categories of security; Malware Infections, Network Security, and Software Patching Cadence. Shockingly, 90 percent of state organizations scored an “F” in Software Patching Cadence, and 80 percent received the same score in Network Security.

But the worst offender of all was NASA, who received the lowest score among all 600 U.S. government organizations surveyed. Joining the bottom feeders were the U.S. Department of State, and the IT systems of Connecticut, Pennsylvania, and Washington.

The Obama administration has certainly made attempts to address the overarching insufficiency of cybersecurity practices currently in play across a range of agencies. President Obama has asked for $19 billion from Congress to improve tech defenses, including $3.1 billion to modernize the IT infrastructure at a number of federal agencies.

“With serious data breaches making headlines on what seems like a weekly basis, our team felt compelled to turn a spotlight on government agencies and determine which of them are demonstrating a commitment to securing their infrastructure and which are falling short,” said Dr. Luis Vargas, senior data scientist at SecurityScorecard. “The data we uncovered clearly indicates that while some are improving their security postures, too many are leaving themselves dangerously exposed to risks and vulnerabilities, especially at the larger federal level.”

Editors' Recommendations

Would you sell your personal data for profit? Survey says ‘no’

Data-Privacy-Survey

Using drones to detect coronavirus? It’s not as crazy as it sounds

drone flies above masked man

Mars’ moons: Japan’s space agency preps pioneering mission

mars moons japans space agency preps pioneering mission jaxa

Hackers expose personal details of 10 million MGM hotel guests

russia hotel wi fi hack hacking hacker lifestyle pc keyboard

Google tries to scare Edge users away from installing Chrome extensions

how to download new microsoft edge chromium 05

How to connect a PS3 controller to a PC

Playstation 3 Controller

Canadian authorities launch investigation into Clearview facial -recognition app

Awesome Tech You Can’t Buy Yet: Infinitely reusable notepads and ingenious AC

Huawei’s new MateBook X Pro laptop comes in envy green, still has pop-up webcam

Lenovo’s new ThinkPad laptops offer choice of Intel or AMD hardware

Apple may ditch Intel for an Arm-based MacBook within the next 18 months

Macbook Air (2018) Review

Honor charms with the first MagicBook laptops sold globally

honor magicbook 14 15 launch news front

What are TFLOPs, and why do they matter?

project scorpio

The best wireless routers for 2020

The best Ethernet cables for 2020