Documents and testimony show that healthcare.gov still has "serious security vulnerabilities" ABC News is reporting.
There have been “two high findings” of risk – the most serious level of concern – in testing over the past few weeks, the top Centers for Medicare and Medicaid Services (CMS) cybersecurity official told the House Oversight Committee on Tuesday in a private transcribed interview.
CMS chief information office Teresa Fryer told the Oversight Committee there was a “vulnerability in the system,” but that “They shut the module down, so this functionality is currently shut down.”
The federal contractor, MITRE Corporation, that oversees security of the website defines a “high finding” as a risk of “significant political, financial and legal damage” if the technical vulnerability is exploited. One high finding was reported in November, the other earlier this week, Fryer said.
