Reports

Consumer Product Safety Commission OIG

Results of Pandemic Relief Fraud Investigations at the CPSC

In June 2024, at our request, the Pandemic Response Accountability Committee (PRAC) found and provided us 36 matches for U.S. Consumer Product Safety Commission (CPSC) employees who were connected to federal government pandemic relief loans. Pursuant to the commitment of the Office of Inspector General (OIG) to fostering and promoting accountability and integrity in government, we undertook an investigation into the 36 matches to determine the appropriateness of these employees receiving pandemic relief loans. Specifically, we sought to detect fraud in these pandemic relief loans.

Full Details: Oversight.gov Report Page

Department of Defense OIG

Audit of DoD Health Care Personnel Shortages During the Coronavirus Disease–2019 Pandemic

Full Details: Oversight.gov Report Page

Audit | 5/23/2024

D-2024-0086-D000AW-0001-0001.a - Open

Rec. 1.a: The DoD OIG recommended that the Defense Health Agency Director, in consultation with the Defense Civilian Personnel Advisory Service develop and implement a plan to ensure a more competitive pay rate for nursing and other hard to fill medical positions in all Defense Health Agency regions.

D-2024-0086-D000AW-0001-0001.c - Open

Rec. 1.c: The DoD OIG recommended that the Defense Health Agency Director, in consultation with the Defense Civilian Personnel Advisory Service develop and implement a plan to establish qualification requirements for nursing and other hard to fill medical positions if it is determined that it would enhance the DoD's efforts to help recruit and retain health care personnel.

D-2024-0086-D000AW-0001-0002.a - Open

Rec. 2.a: The DoD OIG recommended that the Under Secretary of Defense for Personnel and Readiness, in consultation with the Assistant Secretary of Defense for Health Affairs and the Defense Health Agency Director determine whether the DoD needs to extend waiving the authority to apply section 3326, title 5, United States Code, for appointments made to positions in medical or health profession with the DoD under the direct hire authority and, if so, provide the extension in a subsequent memo before the authority for covered positions expires on September 30, 2025.

D-2024-0086-D000AW-0001-0003.a - Open

Rec. 3.a: The DoD OIG recommended that the Defense Health Agency Director revise Defense Health Agency Administrative Instruction 5136.03 to establish approval authority for any civilian personnel extensions outside the continental United States beyond a period of 7 years.

D-2024-0086-D000AW-0001-0003.b - Open

Rec. 3.b: The DoD OIG recommended that the Defense Health Agency Director establish maximum time frames to approve civilian personnel extensions outside of the continental United States and require monitoring of extension approval timelines.

D-2024-0086-D000AW-0001-0003.d - Open

Rec. 3.d: The DoD OIG recommended that the Defense Health Agency Director develop and implement a plan to apply strategies and incentives used by other Federal agencies to hire entry-level registered nurses if it is determined the strategies and incentives would enhance the DoD's recruitment efforts.

Department of the Interior OIG

Summary: NPS Employee Wrongfully Obtained Unemployment Insurance/Pandemic Unemployment Compensation

We found that a full-time NPS employee wrongfully obtained State unemployment insurance and Federal Pandemic Unemployment Compensation.

Full Details: Oversight.gov Report Page

Department of Defense OIG

Management Advisory: DoD Office of Inspector General Review of Other Transaction Agreement W912CG-21-9-0001

Full Details: Oversight.gov Report Page

Department of the Interior OIG

USBR Employee Wrongfully Obtained Unemployment Insurance/Pandemic Unemployment Assistance

We found that a USBR employee wrongfully obtained $28,524 in combined Unemployment Insurance and Pandemic Unemployment Assistance.

Full Details: Oversight.gov Report Page

Department of Defense OIG

Audit of the Reliability of the DoD Coronavirus Disease–2019 Patient Health Data

Full Details: Oversight.gov Report Page

Audit | 7/07/2023

D-2023-0093-D000CT-0001-0001 - Open

(U) Rec. 1: The DoD OIG recommended that the Director of the Defense Health Agency work with the Program Executive Officer of the Program Executive Office, Defense Healthcare Management Systems to document and implement the process for identifying and collecting patient health data of DoD patients in the Military Health System in current and future registries within their purview in a written document, such as a standard operating procedure. The procedure should identify, at a minimum, the internal controls throughout the process, the relevant data sources, data fields, and diagnostic codes used in the computer scripts, and should be reviewed and approved when updates occur.

D-2023-0093-D000CT-0001-0002.1 - Closed

(U) Rec. 2: The DoD OIG recommended that the Senior Contracting Official of the U.S. Army Medical Research Acquisition Activity and the Chief of the Joint Trauma System work with the Joint Trauma System contracting officer's representative to revise the quality assurance surveillance plan. The plan should include an appropriate sampling methodology for selecting patient health records from the Coronavirus Disease-2019 Registry to verify that the contractor is achieving the contract-required accuracy rate for entering patient data, and submit the revised quality assurance surveillance plan to the contracting officer.

D-2023-0093-D000CT-0001-0002.2 - Closed

D-2023-0093-D000CT-0001-0003 - Closed

(U) Rec. 3.a: If the contractor did not meet the 90 percent accuracy requirement, the DoD OIG recommended that the Chief of the Joint Trauma System work with the Senior Contracting Official of the U.S. Army Medical Research Acquisition Activity to update the contractor's rating in the contractor's performance assessment reports for contract W81XWH-22-C-0151 and contract W81XWH-20-P-0197, when feasible.

D-2023-0093-D000CT-0001-0003.a - Closed

(U) Rec. 3.b: If the contractor did not meet the 90 percent accuracy requirement, the DoD OIG recommended that the Chief of the Joint Trauma System work with the Senior Contracting Official of the U.S. Army Medical Research Acquisition Activity to recoup any of the $3.9 million in questioned costs paid for services that did not comply with the terms of contract W81XWH-20-P-0197, if feasible.

D-2023-0093-D000CT-0001-0003.b - Closed

(U) Rec. 3.c: If the contractor did not meet the 90 percent accuracy requirement, the DoD OIG recommended that the Chief of the Joint Trauma System work with the Senior Contracting Official of the U.S. Army Medical Research Acquisition Activity to recoup any of the $2.3 million in questioned costs paid for services that did not comply with the terms of contract W81XWH-22-C-0151.

D-2023-0093-D000CT-0001-0003.c - Closed

(U) Rec. 3.d: If the contractor did not meet the 90 percent accuracy requirement, the DoD OIG recommended that the Chief of the Joint Trauma System work with the Senior Contracting Official of the U.S. Army Medical Research Acquisition Activity to consider all available contract remedies for contract W81XWH-22-C-0151, including modifying and, if necessary, terminating and re-competing the contract, and take action to ensure that the Department receives full value for the funds it expends for contract W81XWH-22-C-0151.

D-2023-0093-D000CT-0001-0003.d - Closed

(U) Rec. 3.e: If the contractor did not meet the 90 percent accuracy requirement, the DoD OIG recommended that the Chief of the Joint Trauma System work with the Senior Contracting Official of the U.S. Army Medical Research Acquisition Activity to delegate an official to review the concerns identified in this report, including the actions of the contracting officials, and take administrative actions, as necessary. The review should include a determination on whether the contractor's performance assessment reports were accurate and make updates as necessary.

D-2023-0093-D000CT-0001-0003.e - Closed

D-2023-0093-D000CT-0001-0004.a - Open

(U) Rec. 4.a: The DoD OIG recommended that the Director of the Defense Health Agency work with the Chief of the Joint Trauma System establish and implement a process for selecting Coronavirus Disease-2019 events for entry into the Coronavirus Disease-2019 Registry to limit selection bias.

D-2023-0093-D000CT-0001-0004.b - Closed

(U) Rec. 4.b: The DoD OIG recommended that the Director of the Defense Health Agency work with the Chief of the Joint Trauma System to include a bias disclosure notice on all reports generated from the Coronavirus Disease-2019 Registry until the Coronavirus Disease-2019 Registry data represent the population of DoD patients who had a Coronavirus Disease-2019 event.

D-2023-0093-D000CT-0001-0005.a - Open

(U) Rec. 5.a: The DoD OIG recommended that the Assistant Secretary of Defense (Health Affairs) establish and implement a policy for developing and populating patient registries that aligns with the Department of Health and Human Services best practices, "Agency for Healthcare Research and Quality, Registries for Evaluating Patient Outcomes: A User's Guide," current edition.

D-2023-0093-D000CT-0001-0005.b - Open

(U) Rec. 5.b: The DoD OIG recommended that the Assistant Secretary of Defense (Health Affairs) conduct a review of all patient registries in the Military Health System to verify the reliability of data in each registry and implement corrective actions, as necessary.

Department of Defense OIG

Audit of DoD Actions Taken to Protect DoD Information When Using Collaboration Tools During the Coronavirus Disease–2019 Pandemic

Full Details: Oversight.gov Report Page

Audit | 6/06/2023

D-2023-0079-D000CR-0001-0001.A1a - Closed

(U) Rec.A.1.a : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0001-0001.A1b - Closed

(U) Rec.A.1.b: This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0001-0002.A2 - Closed

(U) Rec.A.2 : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0001-0003.A3 - Closed

(U) Rec.A.3 : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0001-0004.A4 - Closed

(U) Rec.A.4 : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0001-0005.A5 - Closed

(U) Rec.A.5 : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0002-0001.B1a - Closed

(U) Rec. B.1.a: The DoD OIG recommended that the Chief Information Officer for the Defense Finance and Accounting Service renegotiate changes with the Adobe Connect vendor to configure Adobe Connect to require privileged users to authenticate into the collaboration tool using multifactor authentication.

D-2023-0079-D000CR-0002-0001.B1b - Closed

(U) Rec.B.1.b : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0002-0002.B2 - Closed

(U) Rec.B.2 : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0002-0003.B3a - Closed

(U) Rec.B.3.a : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0002-0003.B3b - Closed

(U) Rec.B.3.b : This recommendation is Controlled Unclassified Information

D-2023-0079-D000CR-0002-0003.B3c - Closed

(U) Rec. B.3.c: The DoD OIG recommended that the Chief Information Officer for the Defense Threat Reduction Agency configure Zoom for Government to lock user accounts after three unsuccessful logon attempts in a 15-minute period.

D-2023-0079-D000CR-0003-0001.C1 - Closed

(U) Rec.C.1 : This recommendation is Controlled Unclassified Information

Department of Defense OIG

Audit of DoD Actions Taken to Implement Cybersecurity Protections Over Remote Access Software in the Coronavirus Disease–2019 Telework Environment

Full Details: Oversight.gov Report Page

Audit | 3/24/2023

D-2023-0057-D000CR-0001-0001.A1 - Closed

(U) Rec. A.1: The DoD OIG recommended that the Director of the U.S. Southern Command - Joint Interagency Task Force South Command, Control, Communications, Computers, Cyber and Intelligence direct its network administrators to scan the VMware Horizon main virtual desktop for malware in accordance with the McAfee Endpoint Security Technical Implementation Guide, develop compensating controls, or formally accept the risk of not scanning the main virtual desktop.

D-2023-0057-D000CR-0001-0002.A2a - Closed

(U) Rec. A.2.a: The DoD OIG recommended that the Chief Information Officer of the Department of the Air Force revise its policy to align with the Windows 10 Security Technical Implementation Guide requirement for disabling inactive user accounts after no more than 35 days.

D-2023-0057-D000CR-0001-0002.A2b - Closed

(U) Rec. A.2.b: The DoD OIG recommended that the Chief Information Officer of the Department of the Air Force direct network and system administrators to disable inactive user accounts after no more than 35 days of inactivity in accordance with the Windows 10 Security Technical Implementation Guide, develop compensating controls, or formally accept the risk of not disabling the inactive user accounts.

D-2023-0057-D000CR-0001-0003.A3 - Closed

(U) Rec. A.3: The DoD OIG recommended that the Chief Information Officer of the Naval Surface Warfare Center - Panama City Division direct network and system administrators to disable inactive user accounts after no more than 35 days of inactivity in accordance with the Windows 10 Security Technical Implementation Guide, develop compensating controls, or formally accept the risk of not disabling the inactive user accounts.

D-2023-0057-D000CR-0001-0004.A4a - Closed

(U) Rec. A.4.a: The DoD OIG recommended that the Chief Information Officer of the Defense Intelligence Agency revise its policy to align with the Windows 10 Security Technical Implementation Guide requirement for disabling inactive users after no more than 35 days.

D-2023-0057-D000CR-0001-0004.A4b - Closed

(U) Rec. A.4.b: The DoD OIG recommended that the Chief Information Officer of the Defense Intelligence Agency direct network and system administrators to disable inactive user accounts after no more than 35 days of inactivity in accordance with the Windows 10 Security Technical Implementation Guide, develop compensating controls, or formally accept the risk of not disabling the inactive user accounts.

D-2023-0057-D000CR-0001-0005.A5a - Closed

(U) Rec. A.5.a: The DoD OIG recommended that the Director of the Marine Corps Information Command, Control, Communications, and Computers revise the organization's policy to align with the Windows 10 Security Technical Implementation Guide requirement for disabling inactive users after no more than 35 days.

D-2023-0057-D000CR-0001-0005.A5b - Closed

(U) Rec. A.5.b: The DoD OIG recommended that the Director of the Marine Corps Information Command, Control, Communications, and Computers direct network and system administrators to disable inactive user accounts after no more than 35 days of inactivity in accordance with the Windows 10 Security Technical Implementation Guide, develop compensating controls, or formally accept the risk of not disabling the inactive user accounts.

D-2023-0057-D000CR-0001-0006.A6 - Closed

(U) Rec. A.6: The DoD OIG recommended that the Director of the Defense Information Systems Agency Joint Service Provider direct network and system administrators to disable inactive user accounts after no more than 35 days of inactivity in accordance with the Windows 10 Security Technical Implementation Guide, develop compensating controls, or formally accept the risk of not disabling the inactive user accounts.

D-2023-0057-D000CR-0002-0001.B1 - Closed

(U) Rec. B.1: The DoD OIG recommended that the Director of the Defense Information Systems Agency Joint Service Provider direct network and system administrators to revise the vulnerability management program to include mitigation timeframes for all vulnerabilities and develop plans of actions and milestones for all vulnerabilities that cannot be mitigated in a timely manner.

Department of the Interior OIG

The Bureau of Indian Affairs Great Plains Region Did Not Oversee CARES Act Funds Appropriately

We determined that the BIA Great Plains Region did not hold three Tribes accountable for submitting CARES Act financial reports or narrative reports.

Full Details: Oversight.gov Report Page

Other | 2/10/2023

Department of the Interior OIG

The Omaha Tribe Did Not Account for CARES Act Funds Appropriately

We determined that the Omaha Tribe did not follow applicable requirements in an agreement with the BIA.

Full Details: Oversight.gov Report Page

Audit | 12/29/2022

2021-FIN-032-B-01 - Closed

We recommend that the BIA resolve the unreasonable hazard pay costs of $29,574 by requiring the Omaha Tribe to perform an analysis of the costs incurred to applicable criteria and document its determination of reasonableness.

2021-FIN-032-B-02 - Closed

We recommend that the BIA resolve the questioned hazard pay costs of $27,841 for Payment 1 by requiring the Omaha Tribe to provide detailed reconciliation of incurred costs to supporting documentation.

2021-FIN-032-B-03 - Closed

We recommend that the BIA resolve the questioned costs of $182,388 for Payment 2 by requiring the Omaha Tribe to provide detailed complete supporting documentation for the hazard pay and indirect costs.

2021-FIN-032-B-04 - Closed

We recommend that the BIA review the Omaha Tribe's revised policy regarding the custody of checks and document that proper controls have been implemented.

2021-FIN-032-B-05 - Closed

We recommend that the BIA resolve the questioned costs of $42,067 by requiring the Omaha Tribe to provide a detailed list of the questioned transactions and voided checks to the BIA for its files to ensure these transactions are not claimed for reimbursement.

2021-FIN-032-B-06 - Open

We recommend that the BIA resolve the questioned costs of $10,792 by requiring the Omaha Tribe to reallocate these costs to the appropriate funding source.

2021-FIN-032-B-07 - Open

We recommend that the BIA require the Omaha Tribe to revise its policy to ensure a complete property record for CARES Act-funded assets in accordance with 2 C.F.R. 200.313(d)(1).

Date Range

Report Type

Report Category

Submitting Agency

Agency Reviewed

Management Challenges

Any Recommendations

Any Open Recommendations

Reports

Results of Pandemic Relief Fraud Investigations at the CPSC

Audit of DoD Health Care Personnel Shortages During the Coronavirus Disease–2019 Pandemic

Summary: NPS Employee Wrongfully Obtained Unemployment Insurance/Pandemic Unemployment Compensation

Management Advisory: DoD Office of Inspector General Review of Other Transaction Agreement W912CG-21-9-0001

USBR Employee Wrongfully Obtained Unemployment Insurance/Pandemic Unemployment Assistance

Audit of the Reliability of the DoD Coronavirus Disease–2019 Patient Health Data

Audit of DoD Actions Taken to Protect DoD Information When Using Collaboration Tools During the Coronavirus Disease–2019 Pandemic

Audit of DoD Actions Taken to Implement Cybersecurity Protections Over Remote Access Software in the Coronavirus Disease–2019 Telework Environment

The Bureau of Indian Affairs Great Plains Region Did Not Oversee CARES Act Funds Appropriately

The Omaha Tribe Did Not Account for CARES Act Funds Appropriately

Glossary

Glossary name will go here