TIGTA finds IRS network security threat
Friday, September 5, 2008
The Treasury Inspector General for Tax Administration (TIGTA) has found more than 1,500 unauthorized web servers on the Internal Revenue Service's (IRS) network, leaving systems vulnerable to attack from hackers.
In September 2007, the group ran network security checks on the servers attached to its system and found that of those identified as having vulnerabilities, 87 per cent were not listed on its internal database.
"Unauthorized servers pose a greater risk because the IRS has no way to ensure that they will be continually configured in accordance with security standards and patched when new vulnerabilities are identified," TIGTA wrote in the report.
Follow-up tests conducted in March found that of the 2,093 servers examined, 437 had high-risk network security vulnerabilities.
To rectify the problem, the report urged network security teams at the IRS to take control of web registration programs in order to block unauthorized access.
In other developments, earlier this year TIGTA conducted an IRS tax forum presentation to alert employees to the risk that phishing scams pose to tax professionals.
Related News:
Cyber criminals exposed medical records - 3.8.2010
More than 18,000 patients, whose medical information is stored on the computer systems of five doctors in Torrance, California, were potential victims of identity theft in September when cyber criminals penetrated the doctors' networks, according to the Los Angeles Times.
McAfee advises companies to boost web security relating to source code - 3.4.2010
At the RSA Conference, currently taking place in San Francisco, McAfee released a report indicating that companies regularly use too few web security protocols when protecting intellectual property such as source code.
False social networking attacks provides teachable moment for web security - 2.25.2010
A unique tool developed to prevent the spread of malware from social networking websites has been recommended Processor.com, a web and network security news provider.
With global web security under siege, exports point to problems - 2.25.2010
In 2009, Garlik, a United Kingdom-based web security company, reported a 207 percent increase in malware use to overtake bank accounts. Recent events have also shown vulnerability in corporate, private and governmental web security systems.
Kaspersky reports malware growing more sophisticated - 2.24.2010
Kaspersky, a web security provider, reported Wednesday that while there is very little growth in the amount of malware currently roaming the web, it is becoming more advanced and much harder to detect.
|
