According to a new report from the Pentagon's Inspector General (PDF Warning), which was spotted by Motherboard, the Department of Defense still has some glaring cybersecurity issues. While the Pentagon has apparently made some great strides since 2017, there are still "266 open cybersecurity-related recommendations, dating as far back as 2008." More specifically, the report claims that "the largest number of weaknesses identified in this yearâ€™s summary were related to governance, which allows an organization to inform its management of cybersecurity risk through the policies, procedures, and processes to manage and monitor the organizations regulatory, legal, risk, environmental, and operational requirements." Motherboard pointed out some particularly worrying instances in the report, like big security lapses in ballistic missile defense systems, or " lax security procedures" that make Army patient data easily accessible. The GAO released a similarly worrying report in October of last year. Without proper governance, the DoD cannot ensure that it effectively identifies and manages cybersecurity risk as it continues to face a growing variety of cyber threats from adversaries, such as offensive cyberspace operations used to disrupt, degrade, or destroy targeted information systems.