Reports

We inspected the U.S. Small Business Administration’s (SBA) administrative process used to review potentially fraudulent Restaurant Revitalization Fund (RRF) applications and recover funds. Program officials designed the RRF application validation and approval processes using the Government Accountability Office’s A Framework for Managing Fraud Risks in Federal Programs. However, 3,790 applications submitted through a point-of-sale partner were processed without verifying gross sales, a key control designed to prevent ineligible entities from receiving awards. As a result, SBA’s RRF...

The U.S. Small Business Administration (SBA) Office of Inspector General (OIG) conducted this review to provide a comprehensive estimate of the potential fraud in the U.S. Small Business Administration’s (SBA) pandemic assistance loan programs. Over the course of the Coronavirus Disease 2019 (COVID-19) pandemic, SBA disbursed approximately $1.2 trillion of COVID-19 Economic Injury Disaster Loan (EIDL) and Paycheck Protection Program (PPP) funds. In the rush to swiftly disburse COVID-19 EIDL and PPP funds, SBA calibrated its internal controls. The agency weakened or removed the controls...

The Office of the Inspector General audited the Tennessee Valley Authority’s (TVA) use of remote application and desktop virtualization client due to the risks of (1) potential system intrusion through misconfigurations and (2) continued elevated remote users during the COVID-19 pandemic. We found the configuration management control for TVA’s remote application desktop virtualization client was ineffective. However, we determined compensating access controls were in place to mitigate the risk to an overall acceptable level.