A U.S. Department of Defense Inspector General report released this week outlines the inadequate cybersecurity practices being used to protect the United States’ ballistic missile defense systems (BMDS) The report shows that BMDS facilities have failed to utilize required security controls such as multifactor authentication, vulnerability assessment, server rack security, protection of classified data stored on removable media, encrypting transmitted technical information, and physical facility security such as cameras and sensors. The report also states that facilities were not encrypting data that was being stored on.
Source: https://www.bleepingcomputer.com/news/security/us-ballistic-missile-defense-systems-fail-cybersecurity-audit/