Home / Latest News / Report: New Guidelines for Unauthorized SSA Software Downloads

Report: New Guidelines for Unauthorized SSA Software Downloads

SSA IG Patrick O'Caroll; Photo: ssa.gov, Juan Fuertes

Workers in the Social Security Administration are downloading outside software without permission, which can lead to malware incidents, according to a report by SSA’s inspector general.

SSA employees and contractors are only allowed to download software critical to SSA’s function and must receive written permission before doing so.

But SSA IG Patrick O’Carroll, whose report found nearly 200 malware attacks in a little under a year, said workers often break the rules. The report pinpointed seven cases, where unauthorized downloading led to malware attacks.

The report concludes SSA’s software approval process and monitoring policy need improvement.

Often, such nonstandard software can contain malicious code that can infect SSA’s operating system.

“These incidents could cause SSA’s network to operate inefficiently or ineffectively,” the report finds. “Further, the malicious software could extract personally identifiable information to be used for identity theft purposes.”

O’Carroll’s report recommends having all download permissions go through a central authority, such as the chief information officer. In some instances, the report finds, disciplinary action may be necessary.

Check Also

Commerce Undersecretary Mira Ricardel Named Deputy National Security Adviser

Mira Ricardel, undersecretary for export administration at the Commerce Department, will serve as deputy to …

Leave a Reply

Your email address will not be published. Required fields are marked *