It’s not as if HHS wasn’t aware of concerns over security for the ObamaCare exchange they launched. Dozens of Attorneys General issued public warnings over the summer about the lack of security in a system that would contain the most private identity information of any web portal ever. Their own Inspector General blasted the contractors working on the site in June for their performance on security.
Still, HHS rolled out the site even with those gaps unaddressed, putting millions of Americans at risk for identity theft — but the news gets worse. CBS News’ Sharyl Attkisson reports this morning that a top official in the ObamaCare exchange told Congress on Tuesday that HHS discovered two more big security issues that no one detected before the rollout:
Via: Hot AirA top HealthCare.gov security officer told Congress there have been two, serious high-risk findings since the website’s launch, including one on Monday of this week, CBS News has learned.Teresa Fryer, the chief information security officer for the Centers for Medicare and Medicaid Services (CMS), revealed the findings when she was interviewed Tuesday behind closed doors by House Oversight Committee officials. The security risks were not previously disclosed to members of Congress or the public. Obama administration officials have firmly insisted there’s no reason for any concern regarding the website’s security. …Details are not being made public for security reasons but Fryer testified that one vulnerability in the system was discovered during testing last week related to an incident reported in November. She says that as a result, the government has shut down functionality in the vulnerable part of the system. Fryer said the other high-risk finding was discovered Monday.
Continue Reading....
