Report: VA sent data over unsecured networks

March 7, 2013

A government watchdog says the Veterans Affairs Department has been sending sensitive data—including electronic health records—over unencrypted networks, making them vulnerable to theft or misuse.

The VA's inspector general says it has been common practice for the agency to send the unencrypted data to outpatient clinics and private contractors, contrary to federal rules that require a higher level of security.

The information included veterans' and dependents' , dates of birth and other private health data. No security breach occurred.

The inspector general is recommending the agency put in place the necessary controls and train its personnel on understanding the importance of encrypting sensitive information.

VA officials say they agree with the report's recommendations and will take corrective action.

Explore further: DHS Employees Sue TSA over Lost Hard Drive

0 shares

Related Stories

Lawmaker looks outside VA to fill mental care gap

January 29, 2013

(AP)—The head of the House panel that oversees veterans' issues says patients who have trouble getting timely mental health care from Veterans Affairs hospitals and clinics should have another option: access to the thousands ...

Recommended for you

Apple issues update after cyber weapon captured

August 26, 2016

Apple iPhone owners on Friday were urged to install a quickly released security update after a sophisticated attack on an Emirati dissident exposed vulnerabilities targeted by cyber arms dealers.

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.