Critical vulnerabilities discovered in VA business portal

By Dan Verton  September 26, 2014

The Department of Veterans Affairs has been working to fix multiple critical security vulnerabilities in one of its major public-facing Web portals that links to a massive database containing personal and financial information on millions of veteran business owners, FedScoop has learned.

The VA announced late Thursday it intends to extend its maintenance and support contract with Herndon, Virginia-based Valador Inc. so the company can conduct “critical security vulnerability repair” on the Vendor Information Pages database — the central repository used by VA to track all businesses that have been verified as veteran-owned or veteran-controlled. Those businesses listed in the VIP database, which is accessible through the Web portal, are eligible for contracts specifically set-aside for small businesses owned by veterans and disabled veterans.

Keep reading this article at:

 For help with Government Contracting: contact your nearest Procurement Technical Assistance Center (PTAC).  Funded through Cooperative Agreements between the U.S. Department of Defense and state and local governments/institutions, PTACs provide free and low-cost assistance in virtually all areas of government contracting.

Learn about PTACs                           Find your PTAC