The Department Needs to Fully Implement Strong Multifactor Authentication for Its High Value Assets to Protect Them from Cyberattacks
Date Issued | January 22, 2024 |
---|---|
Report Number | OIG-24-009-A |
Report Type | Audits / Evaluations |
Description | Our audit found that NTIA did not implement adequate multifactor authentication (MFA) to protect high value assets (HVA) against phishing attacks and selected bureaus had not fully implemented MFA for their HVAs in accordance with zero trust architecture principles. |
View Report | OIG-24-009-A_SECURED.pdf |
View Announcement | ANNOUN_1.PDF |
View Abstract | OIG-24-009-A_Abstract_SECURED.pdf |