No wonder they got hacked! One report detailed 7,329 “potential vulnerabilities” at the I.R.S. because software patches had not been installed. Auditors at the Department of Education, which stores information from millions of student loan applicants, were able to connect “rogue” computers and hardware to the network without being noticed. And at the Securities and Exchange Commission, part of the network had no firewall or intrusion protection for months.
Details may be found in an article by David E. Sanger, Nicole Perlroth and Michael D. Shear in the New York Times at http://goo.gl/7JRiLi.