Get Full Government Meeting Transcripts, Videos, & Alerts Forever!
Penetration tests of water and other critical services identified urgent flaws; vendor fixes prompted national advisory
Summary
The State Auditor's Office completed 39 critical-infrastructure audits, concentrated on water and sewer providers, finding over 260 vulnerabilities; auditors said engagement with a vendor led to improved security for customers nationwide and a joint EPA/CISA advisory.
The State Auditor's Office told the Joint Legislative Audit and Review Committee that it completed 39 critical-infrastructure cybersecurity audits in fiscal 2025, focusing largely on water and sewer providers and other entities that deliver essential services. The SAO said penetration testing across those audits identified over 260 vulnerabilities, with a little more than 10% marked critical or high. "This year, we completed a total of 39 critical infrastructure audits, for governments that provide water and sewer services," said Quinn Peralta, an IT security assistant audit…
Already have an account? Log in
Subscribe to keep reading
Unlock the rest of this article — and every article on Citizen Portal.
- Unlimited articles
- AI-powered breakdowns of topics, speakers, decisions, and budgets
- Instant alerts when your location has a new meeting
- Follow topics and more locations
- 1,000 AI Insights / month, plus AI Chat
