(AP) — An audit found that Kansas government agencies need to do a better job protecting sensitive information stored on their computer systems.

The Legislative Post Audit Division found “chronic weaknesses” in several security controls, including weak passwords and software vulnerabilities. The information was presented Monday in a closed session of the Legislature’s Joint Committee on Information Technology.

The audit looked at eight agencies, including the Department of Administration, attorney general and the Kansas Public Employees Retirement System.

Auditors concluded that controls were insufficient to prevent hackers from accessing confidential information held by the agencies, including Social Security numbers, tax information and other personally identifiable information.