Tootech writes “In a case of “physician, heal thyself,” the agency — which forms the operational arm of DHS’s National Cyber Security Division, or NCSD — failed to keep its own systems up to date with the latest software patches. Auditors working for the DHS inspector general ran a sweep of US-CERT using the vulnerability scanner Nessus and turned up 1,085 instances of 202 high-risk security holes. “The majority of the high-risk vulnerabilities involved application and operating system and security software patches that had not been deployed on computer systems located in Virginia,” reads the report from assistant inspector general Frank Deffer.”

Read more of this story at Slashdot.

See the original post here:
DHS CyberSecurity Misses 1085 Holes On Own Network