deemed too insecure to go live, went live anyway

The chief information security officer at CMS (which runs, determined that was too insecure and recommended that it not go live. As usual, political considerations took priority over reality and she was overruled.

And the security failings continue to be serious:

A top security officer told Congress there have been two, serious high-risk findings since the website’s launch, including one on Monday of this week, CBS News has learned.

Teresa Fryer, the chief information security officer for the Centers for Medicare and Medicaid Services (CMS), revealed the findings when she was interviewed Tuesday behind closed doors by House Oversight Committee officials. The security risks were not previously disclosed to members of Congress or the public.

Well, of course they didn’t disclose the problems to Congress! Literally their entire effort has been organized to avoid disclosing problems to Congress.

(Previous post.)

Leave a Reply

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: