In an extensive security audit led by Oregon’s Secretary of State Jeanne Atkins, officials are warning state and IT leadership of widespread vulnerabilities in 13 agencies.
Key finding in the report, published Nov. 30, observed that in all of the agencies reviewed, staff user accounts were highly susceptible to intrusion. Auditors found that many accounts had been left active long after employees left state service. The report noted that much of the state’s anti-virus software and security updates were either outdated or missing entirely, and 11 agencies were found to have computers with outdated operating systems.
