Posted on 12/03/2013 9:18:34 AM PST by topher
Cyber security experts told Congress today that the Obama administration should take Healthcare.gov offline until privacy vulnerabilities are addressed and detection capabilities are improved.
David Kennedy, a so-called “white hat hacker” who tests security flaws by hacking online systems to help identify weaknesses, warned that there are critical flaws and exposures “currently on the website that hackers could use to extract sensitive information.”
“The purpose of security isn’t to say, ‘Hey, we’re 100 percent impenetrable all the time,’ but can we detect the hackers in the very early stages of the life cycle of the attack, monitor that, and prevent the attacks from happening. And none of those are clearly being done on the Healthcare.gov website,” Kennedy said before the Science, Space and Technology Committee.
(Excerpt) Read more at abcnews.go.com ...
I am sure there are older people who blindly trust the government that may have their personal info hacked...
CNBC Article:
I heard they solved the security problem by giving out Lifelock memberships.
Just to put a fine point on it, you cannot “hack” a system that has no security in the first place.
Open systems are simply free for all’s in the tech world.
This sounds like the kind of gross negligence that can send a CEO to jail in private industry.
30 minutes after testifying, he received an audit notice from the IRS
Yet if one of his buddies does this (Sebelius), this is okay...
And, of course, the head of the company responsible is good friends with Michelle Obama (using who you know/who you blow to do business with)...
I heard they fixed this.
They are giving away Lifelock memberships with every new signup.
I read the article on CNBC
It is Very evident that the FED Government made no provision for security !
Go figure !
By going to the healthcare.gov website , you have the choice of fraud and theft by Govt. , or , identity theft by hackers .
What a choice !
That is why I say that this 'pogram' was purposely , from the very start , designed to fail.
Actually, if a hacker were to get a hold of some pro-Obama celebrity’s personal info through the healthcare account and post it for the world to see, that might speed up the demise of ObamaCare. At a minimum, it would have the DEMs playing even more defense on ObamaCare and the *true* conservatives ramming it down their throats in the 2014 elections.
They are not going to take it offline. Political points are riding on it.
And if anybody gets their data hacked, the government will tell them to go to hell. The victim has no recourse.
It’s ok. I’m not logging in.
“The ONLY way this will go away to defund it and move on.”
Defunding it won’t make it go away. It may block the government from doing certain things, but not all, and it provides no legal protection for companies that decide to ignore it. There needs to be a functional path out of it.
>And if anybody gets their data hacked, the government will tell them to go to hell. The victim has no recourse.
The Kennedy fellow on the CNBC video said the government doesn’t even have to NOTIFY them that they’ve been hacked. Unbelievable.
“It is Very evident that the FED Government made no provision for security “
That’s not quite true. They built on an interface to block people from getting plan information until they entered personally identifiable information.
Let it snow Class Actions en masse.
I dont believe that blocking data from the legally mandated consumer
counts as " website security" .
I consider it as "Bait and Switch" ..or playing financial 'three-card montey'
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.