A recent State audit has discovered that the Massachusetts Clean Energy Center wired $93,679 to a cyber-criminal in February 2017, and didn’t advise its board about the incident for 7 months.

Following the audit, the auditor recommended that the agency conduct a risk assessment, develop written policies and procedures to address the potential for cybercrime, and report incidents to the board and to law enforcement.

The Clean Energy Center has beefed up its security measures following the incident to better protect itself from similar incidents.