More than half of more than two dozen cyber attacks against the Department of State were mishandled by officials responsible for digital security, a government watchdog said Wednesday.

Accounting firm Williams, Adley & Company-DC LLP evaluated the State Department’s cybersecurity program and reviewed 25 cybersecurity incidents in September and October 2014 on behalf of the agency’s inspector general.

“For 14 of the 25 cybersecurity incidents evaluated, [Computer Incident Response Team] personnel did not fully comply with categorization guidelines, reporting requirements and remediation timelines as defined in the department’s information security policies and procedures,” the report said.

Of those, seven attacks were either not remediated or not caught quickly, four were not reported to the Computer Emergency Readiness Team quickly, and another two were not reported at all.

Read more

Related Articles