GAO’s reports and testimonies give Congress, federal agencies, and the public timely, fact-based, non-partisan information that can improve government operations and save taxpayers billions of dollars.
As the COVID-19 pandemic has led to increased use of remote education, K-12 schools across the nation have increasingly reported ransomware and other types of cyberattacks.
Federal agencies offer products and services to help schools prevent and respond to cyberattacks.
Telework is essential to the continuity of federal operations in emergencies—but it also brings added cybersecurity risks. We examined federal agencies' preparedness to support expanded telework during the COVID-19 pandemic.
The General Services Administration developed an "online marketplace program" to make it easier for agencies to buy commercially available products, e.g., office supplies.
GSA started testing the program since our 2018 report, contracting with 3 online marketplace providers.
If you were near a person who later tests positive for an infectious disease, an exposure notification app can let you know. These apps allow for more rapid and broader contact tracing—ideally helping to slow disease spread.
About half of the U.S.
Recent events—such as the ransomware attack on the Colonial pipeline—illustrate the pressing need to strengthen federal cybersecurity and IT management. These issues are on our High Risk List, and we have often told the government to urgently pursue action on them.
The U.S. depends on pipelines to deliver the natural gas, oil, and other hazardous liquids that power vehicles, heat homes, and more. But cyberattacks, such as an attack on Colonial Pipeline's IT networks in May 2021, threaten pipeline security.
We testified about our work on the Department of Veterans Affairs' efforts to modernize its health information and financial IT systems, address cybersecurity, and more.
For example, although potential hurdles remain, VA made progress modernizing electronic health records.
Health care organizations' IT systems are critical to the nation's well-being. Cyberattacks on them could, for example, put patient privacy at risk or disrupt essential telehealth services. (The nation's cybersecurity is on our High Risk List.
The Department of Defense plans to spend $12 billion on its 29 largest business information technology systems during FYs 2019-2022. DOD's efforts to modernize business systems has been a topic on our High Risk List since 1995.
A Department of Defense task force concluded in 2018 that DOD's inventory management systems were potentially vulnerable to attack. These systems, run by the Defense Logistics Agency, are used to manage the defense supply chain.