INVESTIGATION LEADS TO INFORMATION TECHNOLOGY SECURITY UPDATES

June 27, 2024 | Investigative Summaries

Amtrak notified our office February 16, 2024, of a potential data‐sharing incident. Our investigation found that an employee granted two third‐party email accounts access to an Amtrak OneDrive/SharePoint folder which contained 369 company files related to an Amtrak program. As a result of our investigation into the incident, the company took remedial action to optimize Microsoft tools for data loss prevention, conducted routine auditing and removal of guest accounts, completed additional security enhancements, and provided alerts for risky file sharing.

Tracking Number

OIG-WS-2024-341

Summary

INVESTIGATION LEADS TO INFORMATION TECHNOLOGY SECURITY UPDATES

Filter Results

Featured Reports

Engagement Memo-Hudson Tunnel Project

OIG investigation leads to guilty plea in railroad retirement fraud case

Amtrak can better use its customer service data to improve the customer experience

CAR INSPECTOR LOSES SENIORITY, IS REMOVED FROM SERVICE FOR WORKING OUTSIDE JOBS ON MEDICAL LEAVE