A recent report by California’s state auditor uncovered “high risk deficiencies” at 21 of 33 government entities that are not forced to follow security standards developed by the California Department of Technology.
Certain entities had not implemented basic security measures including changing default passwords and patching vulnerable systems. The report also concluded that “despite being aware of significant deficiencies in their current information security programs, some … have been slow to address these weaknesses.”
Read more: Report Finds California Government IT Security Flaws