An official website of the United States government
Here's how you know
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Brought to you by the Council of the Inspectors General on Integrity and Efficiency
Federal Reports
Report Date
Agency Reviewed / Investigated
Report Title
Type
Location
U.S. Agency for International Development
Financial Audit of the Tuberculosis Health Action Learning Initiative Project in India Managed by World Health Partners, Cooperative Agreement AID-386-A-16-00004, April 1, 2017, to March 31, 2018
Closeout Audit of the Fund Accountability Statement of the Balkan Investigative Reporting Network (BIRN) Skopje, Strengthening Independent Media in Macedonia Project - Investigative Journalism and Cooperation Between Media and Civil Society in North Maced
Closeout Examination of Abu Al-Teen for General Contracting's Compliance With Terms and Conditions of Multiple Sub-contracts, Under Palestinian Community Infrastructure Development Program in West Bank and Gaza, Agreement AID-294-A-13-00005-00, managed by
Fund Accountability Statement Audit of Centre for Agribusiness and Rural Development Foundation Under Multiple Awards in Armenia, for the Year Ended December 31, 2015
Investigative Summary: Findings of Misconduct by an FBI Senior Official for Failing to Report an Intimate Relationship with a Subordinate and for Failing to Avoid Creating the Appearance of Preferential Treatment
The VA Office of Inspector General (OIG) conducted this review in response to a hotline allegation related to the Milwaukee, Wisconsin, VA regional office. The complaint alleged that veterans’ sensitive personal information was stored on shared network drives on the VA enterprise network and was likely accessible to unauthorized users. Sensitive personal information is protected by law and VA policy. US laws require appropriate safeguards to protect personal information and limit the uses and disclosures of that information without authorization. VA policy requires information system users who access sensitive personal information as part of their official duties to avoid its unauthorized disclosure. Policy also prohibits other users from accessing personal information without a business need. The OIG team found that veterans’ sensitive personal information was left unprotected on two shared network drives, putting them at risk of fraud or identity theft. Office of Information and Technology senior representatives told the team that authenticated network users with access to the shared drives could have accessed that information regardless of their business need. This occurred through a combination of negligence and lack of oversight. Although VA’s Data Breach Response Service determined that storing sensitive personal information on the shared network drives did not meet the criteria for a data breach and did not require notifications, it is important that VA improves its controls and oversight to mitigate future risk. The OIG recommended VA officials provide remedial training to users on the safe handling and storage of veterans’ sensitive personal information on network drives. The OIG also recommended officials establish technical controls and oversight procedures (including facility-specific measures) to ensure users cannot store veterans’ sensitive personal information on shared network drives.
The Child Care and Development Fund (CCDF) program, administered by the Administration for Children and Families, subsidizes childcare expenditures of low-income families and families receiving temporary public assistance.
