IsYour Data Secure????
The RetrieverTraining.Net Forums The Retriever Academy
Total Retriever Training with Mike Lardy
Hawkeye Media Gunners Up Tritronics Wildear
Results 1 to 3 of 3

Thread: IsYour Data Secure????

  1. #1
    Senior Member road kill's Avatar
    Join Date
    Feb 2009
    New Berlin, WI

    Default IsYour Data Secure????


    Never was.......

    No security ever built into Obamacare site: Hacker
    Published: Monday, 25 Nov 2013 | 9:54 AM ET By: Matthew J. Belvedere | Producer, CNBC's "Squawk Box" Twitter

    Monday, 25 Nov 2013 | 7:14 AM ET Dissecting the critical security problems with the website, with TrustedSec CEO David Kennedy. "It will take a long time to address some of the critical and high exposures on the website itself," he says.It could take a year to secure the risk of "high exposures" of personal information on the federal Obamacare online exchange, a cybersecurity expert told CNBC on Monday.

    "When you develop a website, you develop it with security in mind. And it doesn't appear to have happened this time," said David Kennedy, a so-called "white hat" hacker who tests online security by breaching websites. He testified on Capitol Hill about the flaws of last week.

    "It's really hard to go back and fix the security around it because security wasn't built into it," said Kennedy, chief executive of TrustedSec. "We're talking multiple months to over a year to at least address some of the critical-to-high exposures on the website itself."

    According to the Department of Health and Human Services, which oversaw the implementation of the website, the components used to build the site are compliant with standards set by Federal security authorities.

    "The privacy and security of consumers' personal information are a top priority for us. Security testing happens on an ongoing basis using industry best practices to appropriately safeguard consumers' personal information," said the spokesperson.

    Another online security expert—who spoke at last week's House hearing and then on CNBC—said the federal Obamacare website needs to be shut down and rebuilt from scratch. Morgan Wright, CEO of Crowd Sourced Investigations said: "There's not a plan to fix this that meets the sniff test of being reasonable."

    (Read more: Fix Obamacare site? 'Better chance of seeing God')

    Last month, a Sept. 27 government memorandum surfaced in which two HHS officials said the security of the site had not been properly tested before it opened, creating "a high risk."

    HHS had explained then that steps were taken to ease security concerns after the memo was written, and that consumer information was secure. Technicians fixed a security bug in the password reset function in late October, the agency said.

    But on CNBC, Kennedy disputed those claims, saying vulnerabilities remain on "everything from hacking someone's computer so when you visit the website it actually tries to hack your computer back, all the way to being able to extract email addresses, users names—first name, last name—[and] locations."

    Andrew Harrer | Bloomberg | Getty Images

    Healthcare.govGovernment officials and contractors have been working around the clock for weeks, releasing fixes on nightly with the goal of meeting the Obama administration's self-imposed deadline of the end of the month to have the site working smoothly.

    "When you look at the site itself, it could be really good. It could do really well. They're just not building the security into the site itself," said Kennedy. "Putting your information on there is definitely a risk."

    The federal portal serves 36 states not operating their own health insurance exchanges. Fourteen other states and the District of Columbia run their own marketplaces. All of them launched on Oct. 1 as part of the Obamacare provision mandating most Americans have health-care coverage for next year or face tax penalties.

    Kennedy said those state-operated exchanges also face security risks. "These are going to be a large area for attack." He pointed to a problem on the Vermont website on Friday. Officials overseeing the Vermont Health Connect website confirmed a security breach on the system last month.

    When it comes to securing personal information online, Kennedy cited Amazon, Facebook, and Twitter as models for the industry. He even said the IRS website does regular testing to help "ensure that when the websites come out they're protected."

    —By CNBC's Matthew J. Belvedere.

  2. Remove Advertisements

  3. #2
    Senior Member sick lids's Avatar
    Join Date
    Sep 2012
    mukwonago, wi


    Wouldn't even tell my dog a real secret.

  4. #3
    Senior Member Gerry Clinchy's Avatar
    Join Date
    Aug 2007


    Interesting thought from American Thinker piece ... all this complexity that is the fall guy for the failures of were solved by the private sector by the various tax software people ... and they interface with the IRS and also state taxing authorities, too. Maybe the govt should have hired H&R Block to build that website?

    The private sector web sites that people use which face similar complexity, security and interface issues are the Tax Preparation Software providers. The federal tax code is highly complex. Taxpayers must provide sensitive information such as Social Security numbers, dates of birth, credit card information and even a user's bank account for people who want to direct deposit a refund or pay via EFT. These programs also need to take into account the laws of the 50 states. Finally, because these providers offer electronic filing options their software also has to interface with the IRS system and with the states' Departments of Revenue.

    An increasing number of taxpayers are comfortable using these systems to self-prepare and file personal and small business income tax returns. Such returns contain information identity thieves would love to obtain.

    All of this means the issue with is more the inefficiency of the administration than the complexity of the task. The private sector had handled this well, without spending anywhere near a billion dollars.
    "Know in your heart that all things are possible. We couldn't conceive of a miracle if none ever happened." -Libby Fudim

    ​I don't use the PM feature, so just email me direct at the address shown above.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts