An audit of government data security has revealed that a fifth of all passwords used by federal agencies are vulnerable to being cracked. The Federal Government Accountability Office (GAO) conducted the study, which found that 18 percent of passwords used by federal agencies are “easy to guess or easily obtained,” putting those agencies at risk of being hacked.
This vulnerability is particularly concerning given the sensitivity of data held by federal agencies. Government agencies are responsible for managing and protecting information such as citizens’ personal data, financial records, social security numbers, and other confidential information. The audit showed that despite these risks, many agencies do not have appropriate password policies in place or adequate security measures to protect this data.
In addition to a lack of encryption and two-factor authentication, the audit also revealed that many passwords used by agencies are too simple, meaning they are easy to guess or are frequently used across multiple accounts. This increases the chances of hackers gaining access to valuable personal information.
In response to the findings, the GAO has called on federal agencies to strengthen their password protocols, noting that “even if one password could be compromised, the entire system or an entire government computer network can be compromised.”
The GAO recommends that agencies set a minimum length and complexity for their passwords and use a password manager to store and protect them. Additionally, they suggest enforcing password changes on a regular basis and employing two-factor authentication to further secure sensitive data.
Given the potential risks posed by poor password security, it is essential that federal agencies take the necessary steps to ensure their data is protected. Only with strong security measures in place can they guarantee the safety of the information they store.
Hey Subscribe to our newsletter for more articles like this directly to your email.