[ISN] FDIC info security lacking, GAO finds

From: InfoSec News (isn@private)
Date: Tue Jun 01 2004 - 03:47:08 PDT

  • Next message: InfoSec News: "Re: [ISN] North Korea operating computer-hacking unit"

    http://www.fcw.com/fcw/articles/2004/0524/web-fdic-05-28-04.asp
    
    By Sarita Chourey 
    May 28, 2004
    
    Weaknesses in the Federal Deposit Insurance Corp.'s information
    systems place sensitive information at risk of unauthorized
    disclosure, disruption of operations or loss of assets, according to
    the General Accounting Office.
    
    Congressional auditors found that the corporation had resolved almost
    all the computer security weaknesses from 2001 and 2002. But the 2003
    audit found new vulnerabilities in its information systems.
    
    FDIC must establish controls and ensure information security receives
    enough attention, auditors said. GAO recommended that the agency's
    chief information officer correct a number of information security
    weaknesses and improve the ability of its computer security management
    program to test and evaluate security measures.
    
    Officials from FDIC agreed with the recommendations and plans to
    follow them, according to the GAO report.
    
    
    
    _________________________________________
    ISN mailing list
    Sponsored by: OSVDB.org
    



    This archive was generated by hypermail 2b30 : Tue Jun 01 2004 - 05:49:55 PDT