Obamacare Database With Personal Information on Millions Had ‘Basic Security Flaws’

Washington Beacon ^ | September 24, 2015 | Elizabeth Harrington

[lbryce]

An Obamacare database storing personal information on millions of Americans including Social Security Numbers was riddled with “basic security flaws,” according to a report from an agency watchdog.

ABC News reports:

The government stored sensitive personal information on millions of health insurance customers in a computer system with basic security flaws, according to an official audit that uncovered slipshod practices.

The Obama administration said it acted quickly to fix all the problems identified by the Health and Human Services inspector general’s office. But the episode raises questions about the government’s ability to protect a vast new database at a time when cyberattacks are becoming bolder.

Known as MIDAS, the $110-million system is the central electronic storehouse for information collected under President Barack Obama’s health care law.

It doesn’t handle medical records, but it does include names, Social Security numbers, birthdates, addresses, phone numbers, passport numbers, employment status and financial accounts of customers on HealthCare.gov and state insurance marketplaces.

The Department of Health and Human Services (HHS) Office of Inspector General (OIG) conducted the review between August and December 2014.

The audit found several vulnerabilities with the MIDAS database. For instance, the Centers for Medicare and Medicaid Services (CMS) did not simulate an attack on the database that would have revealed obvious security weaknesses.

[lbryce]

Very NOT surprising. ObamaCare was never designed to be a genuine, legitimate program. It was created as a flawed program from the ground up as a device to create losses for the government, the people it was created to cheat, the insurance companies it was designed to put out of business. Reportedly costing $160 million dollars (to create a web site) was about as user unfriendly imaginable. That it has basic security flaws is a testament to the creators of the site to have followed its intended design to the letter.

[Diogenesis]

[goodnesswins]

And, I keep refusing to JOIN the Doctor/Lab portals...and they wonder why...

[lbryce]

Point very well made.

[Chief901]

If you like your data hacker, you can keep your data hacker!

[mountainlion]

So has obama given out all personal information on all Americans yet?

[SeeSharp]

but it does include names, Social Security numbers, birthdates, addresses, phone numbers, passport numbers, employment status and financial accounts of customers on HealthCare.gov and state insurance marketplaces

Say what?

[VanShuyten]

Password was “1234”?

[HarleyLady27]

Makes you wonder who is dumping today...with all of shill’s emails articles and now this?

[texas booster]

So Congress passed a law that the IRS could not share tax records with other agencies (yes, they really did).

So now we are required to send in copies of our tax records when submitting FAFSA, ACA and dozens of other pipsqueak agencies. Under penalty of perjury.

Seriously! And we are stupid enough to do it, because it is the law, and because we know that “they” will come after us unless we are in a protected class.

But the penalties if the said agency simply does not bother to secure such important, personal info?

Well, too bad, so sad.

You should have bought Lifelock or some other identity protection system (of dubious quality). Tough to be you.

[Paul R.]

Security experts have been saying this from the get-go.