Reports
Search reports, investigative results, and agency plansShowing 21 - 30 of 33 results
Department of the Treasury OIG
CORONAVIRUS DISEASE 2019 PANDEMIC RELIEF PROGRAMS Audit of Air Carrier Worker Support Certifications - XOJET Aviation, LLC
Small Business Administration OIG
COVID-19 and Disaster Assistance Information Systems Security Controls
This report presents the results of our audit to determine whether the U.S. Small Business Administration (SBA) maintained effective management control activities and monitoring of the design and implementation of third-party operated SBA systems. SBA needed information technology systems from third-party service providers that could improve the system efficiency and productivity to process high transaction volumes, transmit data between other information systems, and safeguard the integrity and confidentiality of the personally identifiable information processed by the programs. We found the...
Small Business Administration OIG
COVID-19 Economic Injury Disaster Loan Applications Submitted from Foreign IP Addresses
We evaluated the U.S. Small Business Administration’s (SBA) controls to flag or prevent potentially fraudulent Coronavirus Disease 2019 (COVID-19) Economic Injury Disaster Loan (EIDL) applications submitted from foreign Internet Protocol (IP) addresses. Although the agency implemented several layers of controls to prevent or reduce fraud from foreign countries, individuals at foreign IP addresses were able to access the COVID-19 EIDL application system. SBA received millions of attempts to submit COVID-19 EIDL applications from foreign IP addresses and stopped most of them; however, the agency...
Architect of the Capitol OIG
Effects of COVID-19 and the Events of January 6 Have Increased the Cannon House Office Building Renewal Project’s Contracts by $5.6 Million and Further Increases are Expected
The objective of this audit was to determine the effects of COVID-19 and the events of January 6, 2021, on the CHOBr Project.
Tennessee Valley Authority OIG
Remote Application and Desktop Virtualization
The Office of the Inspector General OIG audited the Tennessee Valley Authority’s (TVA) use of remote application and desktop virtualization due to the risk of increased remote users during the COVID-19 pandemic and recent publicized remote access vulnerabilities. We found several areas where TVA was consistent with cybersecurity remote access best practices. However, we identified gaps in TVA’s configuration settings, architectural design, and administrative procedures. We recommend the Vice President and Chief Information and Digital Officer, Technology & Information, review the identified...