TVA Internet-Accessible Web Sites

The Office of the Inspector General audited Tennessee Valley Authority (TVA) Internet-accessible Web sites to identify cyber security weaknesses through penetration testing. In summary, 37 Internet-accessible Web sites were tested, and 7 high risk vulnerabilities were identified. Two of the high risk vulnerabilities that were identified require additional testing by TVA's Information Technology for confirmation. TVA management agreed with our findings and recommendations.