Congress

House speaker criticizes IRS cybersecurity

tax form and keyboard

The Office of the Speaker of the House posted a scathing blog entry criticizing the IRS for not getting all its security controls in order in time for tax season.

"Right now, as you’re sending the IRS just about everything there is to know about you, it remains highly vulnerable to hackers and cyberattacks," Michael Shapiro, communications adviser to House Speaker Paul Ryan, wrote in the March 30 post. "And the agency has no intention of doing anything about it."

In a report released March 28, the Government Accountability Office issued 43 recommendations for the IRS to patch its information security vulnerabilities. GAO found that weaknesses in security controls threaten to compromise taxpayers’ sensitive data. Of the 12 systems GAO reviewed, two lacked critical patches.

The blog post accuses the IRS of “the usual excuses and evasions” in response to the report and calls for the agency to take steps to implement the recommendations and report back to Congress on its progress.

The IRS implemented an automated tool to manage password requirements, but several systems did not force periodic password resets despite an IRS policy mandating new passwords every 90 days for user accounts and every year for service accounts.

In early March, the IRS suspended its Identity Protection Personal Identification Number retrieval tool over concerns that it could be vulnerable to hackers.

In 2015, hackers might have accessed more than 700,000 taxpayer accounts and targeted another 576,000 accounts unsuccessfully, according to an inspector general investigation

About the Author

Bianca Spinosa is an Editorial Fellow at FCW.

Spinosa covers a variety of federal technology news for FCW including workforce development, women in tech, and the intersection of start-ups and agencies. Prior to joining FCW, she was a TV journalist for more than six years, reporting local news in Virginia, Kentucky, and North Carolina. Spinosa is currently pursuing her Master’s degree in Writing at George Mason University, where she also teaches composition. She earned her B.A. from the University of Virginia.

Click here for previous articles by Spinosa, or connect with her on Twitter: @BSpinosa.


Featured

  • Contracting
    8 prototypes of the border walls as tweeted by CBP San Diego

    DHS contractors face protests – on the streets

    Tech companies are facing protests internally from workers and externally from activists about doing for government amid controversial policies like "zero tolerance" for illegal immigration.

  • Workforce
    By Mark Van Scyoc Royalty-free stock photo ID: 285175268

    At OPM, Weichert pushes direct hire, pay agent changes

    Margaret Weichert, now acting director of the Office of Personnel Management, is clearing agencies to make direct hires in IT, cyber and other tech fields and is changing pay for specialized occupations.

  • Cloud
    Shutterstock ID ID: 222190471 By wk1003mike

    IBM protests JEDI cloud deal

    As the deadline to submit bids on the Pentagon's $10 billion, 10-year warfighter cloud deal draws near, IBM announced a legal protest.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.