The Corner

Disturbing Similarities Between HealthCare.gov Hack and Earlier Attack

The HealthCare.gov hack shares some worrisome details with a successful attack last December on a Vermont health-exchange server, as I write this evening on the homepage.

In both cases, a basic — even stupid — security oversight allowed the hacker to gain access to a server. Likewise, both attacks took several weeks to detect. Both attacks seem to have originated, at least in part, from abroad. Here’s why the commonalities matter:

The similarities between the HealthCare.gov and Vermont attacks are significant because they suggest a top-to-bottom lack of security that afflicts the federal and state exchanges alike.

Michael Gregg, a cybersecurity expert who testified to Congress about HealthCare.gov risks, tells NRO this evening: “I think the most important take-away, unfortunately, is to still be very leery about how well these systems have actually been secured. We’re still potentially running code and applications that seem to be vulnerable at one point, and these systems may still be at this state: We’re still working with these patched systems. All this stuff should have been rebuilt from the ground up with security as the first thing in mind.”

Read the whole piece here.

— Jillian Kay Melchior is a Thomas L. Rhodes Fellow for the Franklin Center for Government and Public Integrity. She is also a Senior Fellow at the Independent Women’s Forum.

Most Popular

World

Trump’s Disgraceful Press Conference in Helsinki

On Monday, President Trump gave a deeply disgraceful press conference with Russian dictator Vladimir Putin. The presser began with Trump announcing that although the Russia–U.S. relationship has “never been worse than it is now,” all of that “changed as of about four hours ago.” It was downhill from ... Read More
Culture

Questions for Al Franken

1)Al, as you were posting on social media a list of proposed questions for Supreme Court nominee Brett Kavanaugh, did it occur to you that your opinion on the matter is no more relevant than Harvey Weinstein’s? 2) Al, is it appropriate for a disgraced former U.S. senator to use the Twitter cognomen “U.S. ... Read More
White House

The President’s Do-Over

I agree with Jonah on all counts: On net, President Trump’s do-over of his Helsinki remarks is a good thing; regrettably, it is not sincere; and while I hope the revised version is the one he sticks to, I don’t have confidence that will be the case -- as posited in my column Tuesday on the folly of having the ... Read More
National Security & Defense

Trump’s Helsinki Discord

Donald Trump is not, and never will be, the Moscow correspondent for The Nation magazine, and he shouldn’t sound like it. The left-wing publication is prone to extend sympathetic understanding to adversaries of the United States and find some reason, any reason, to blame ourselves for their external ... Read More