Home / News / Report: New Guidelines for Unauthorized SSA Software Downloads

Report: New Guidelines for Unauthorized SSA Software Downloads

SSA IG Patrick O'Caroll; Photo: ssa.gov, Juan Fuertes

Workers in the Social Security Administration are downloading outside software without permission, which can lead to malware incidents, according to a report by SSA’s inspector general.

SSA employees and contractors are only allowed to download software critical to SSA’s function and must receive written permission before doing so.

But SSA IG Patrick O’Carroll, whose report found nearly 200 malware attacks in a little under a year, said workers often break the rules. The report pinpointed seven cases, where unauthorized downloading led to malware attacks.

The report concludes SSA’s software approval process and monitoring policy need improvement.

Often, such nonstandard software can contain malicious code that can infect SSA’s operating system.

“These incidents could cause SSA’s network to operate inefficiently or ineffectively,” the report finds. “Further, the malicious software could extract personally identifiable information to be used for identity theft purposes.”

O’Carroll’s report recommends having all download permissions go through a central authority, such as the chief information officer. In some instances, the report finds, disciplinary action may be necessary.

Check Also

DARPA Launches Program Seeking High Performance Computing for Military Simulators

The Defense Advanced Research Projects Agency launched a new program to improve how virtual training environments replicate real-world interactions and host more complex systems. DARPA unveiled Monday that the Digital RF Battlespace Emulator program intends to build a new breed of High Performance Computing capable of supporting advanced radio frequency for simulators. 

Leave a Reply

Your email address will not be published. Required fields are marked *