The Open Risk Data functionality of the Open Risk Manual is in still in active development!

US General Services Administration 2013 Technical Error (Q16813)

From Open Risk Data
A data breach risk event
Language Label Description Also known as
English
US General Services Administration 2013 Technical Error
A data breach risk event

    Statements

    has date
    January 2013
    0 references
    has textual description
    GSA users may have been able to view the financial information and trade secrets of other GSA users due to a security vulnerability. The specific database that was affected is called the System for Award Management (SAM). Contractor and vendor registration records are cataloged by SAM. It is not clear how GSA became aware of the issue or how long it was a problem. Agency officials revealed that users could purposefully or inadvertently view the information of other users after following a series of steps.UPDATE (03/23/2013): Users had Social Security numbers and tax identification numbers exposed. (English)
    1 reference
    is documented in URL
    http://www.nextgov.com/cybersecurity/2013/03/gsa-database-may-have-leaked-contractor-banking-and-proprietary-information/61921/?oref=ng-channelriver
     

    Sitelinks

                Retrieved from "https://www.openriskmanual.org/data/index.php?title=Item:Q16813&oldid=14758"
                Creative Commons ShareAlike 4.0 International
                Powered by MediaWiki