Federal Cybersecurity by the Numbers: The Biggest Spenders and the Biggest Threats

Over the past couple years, cyberincidents reported by federal agencies have nearly doubled -- from about 41,000 in 2011 to more than 77,000 in 2015. Partly that’s because agencies are getting smarter about detecting threats, such as suspicious network activity or malware able to slip past traditional antivirus tools. But the annual scorecard tracking agencies’ compliance with the Federal Information Security Management Act shows some agencies are, in fact, backsliding when it comes to robust security measures. The following charts show how agencies have plugged long-festering critical vulnerabilities, which agencies are ponying up the most cash for IT security and some of the common threats faced across agencies.