Audit: USPTO's mismanagement of active directory poses 'significant' cyber risk

FedScoop: The U.S. Patent and Trademark Office “inadequately managed” its active directory and “poorly protected” critical IT assets hosting it — putting its mission at “significant” cyber risk, according to a recent audit.

USPTO’s active directory maintains a domain from which to manage all network resources: users, workstations, servers, printers, databases, and system configuration. As a result, the directory holds sensitive information like credentials and network topographies “making it a prime target for cyberattacks,” reads the audit conducted by the Department of Commerce Office of Inspector General.

Read article