Slashdot Mirror

← Back to Stories (view on slashdot.org)

IRS Doesn't Check Cyberaudit Logs

Posted by samzenpus on from the check-your-work-twice dept.

An anonymous reader writes "The US Internal Revenue Service's IT staff hasn't routinely checked its cybersecurity audit logs, according to a report released this week by the agency's inspector general's office. The report is not exactly flattering for the IRS. The report, with large chunks redacted, recommends the IRS allow independent review of audit logs and establish procedures to save audit logs. It also recommended that the IRS regularly test its Internet gateways for compliance with standard security configurations."

5 of 78 comments (clear)

  1. Or better yet by IceCreamGuy · · Score: 2, Funny

    Why don't we test their Internet gateways? Right now! Let's go, crowd, everybody start hammering their GWs! Hooray, we're helping!

    1. Re:Or better yet by morgan_greywolf · · Score: 2, Funny

      No, thanks. You don't want to know what the IRS can do to get you back. You really, really don't want to know...

      --
      My blog
  2. Re:It wasn't a mistake ... by cthulu_mt · · Score: 4, Funny

    Its okay as long as they keep the records for seven years.

    --
    Virginia is for lovers. EVE is for griefers.
  3. Re:I don't either... by Anonymous Coward · · Score: 5, Funny

    Have you stopped to think that perhaps automated tools don't always work as expected?

    Frist Post!!1!

  4. Re:Not just a problem for IRS by pyro_peter_911 · · Score: 2, Funny

    I would bet money a lot of government and I know for a fact a lot of private organizations do NOT audit their general security logs in a timely and in an effective fashion.

    Don't forget to file your form 1099 after you win that bet.

    Peter

    --
    Downsize DC Today!