Security Flaws Apparent in the Affordable Care Act Site
According to an article from the Christian Science Monitor, cybersecurity experts have noticed “red flags” about the security of the Obamacare site, healthcare.gov. This security flaw, coupled with the myriad bugs and glitches on the site, adds to the frustration and confusion that has been plaguing users for the last few weeks.
While the glitches and bugs may be frustrating, they are not nearly of as much concern as the security flaws. CSM points out that cybersecurity professionals brought up several red flags on the site that could allow for theft of personal information. Though not yet considered “vulnerabilities,” or of serious concern, the flaws should still be taken seriously.
The article in the Christian Science Monitor suggests that security flaws could allow hackers to “spoof” the website with a look-a-like site to acquire users’ information. The site also stores cookies, or personal data users have entered, which hackers could get access to. Another security flaw includes the ability for hackers to use an automated program to try to repeatedly enter the site.
Other security flaws include verification (the health insurance program doesn’t run off a single site, but rather a collection of sites where people can register) and login fraud, which would allow hackers to use automated systems to break into individual accounts. On the verification front, CSM suggests that because users will have so many different site options for health coverage, they could easily be tricked into thinking a site is legitimate when it is not.
For more information, visit: http://www.csmonitor.com/USA/Politics/2013/1014/Obamacare-website-security-called-outrageous-How-safe-is-it-video/(page)/2
Posted by Jamie Friedlander on Oct 16, 2013