OIG warns EPA of ‘significant’ cybersecurity vulnerabilities

A new report from the EPA Office of Inspector General (OIG) says the Central Data Exchange (CDX), the online portal for data collection and reporting under several environmental statutes, has “significant” security gaps that could allow unauthorized access, though the agency is disputing many of those findings. OIG’s March 5 report , “Lack of Vulnerability Remediation for Weaknesses Identified Within the Central Data Exchange System Increases the Risk of Cyberattacks,” details what the watchdog office says were two “high-risk” and...