HealthCare.gov, the online portal to the federal health insurance exchange set up under the Affordable Care Act, is still vulnerable to security and privacy threats, according to a new report from the U.S. General Accounting Office (GAO). While the Centers for Medicare & Medicaid Services (CMS) has "taken steps" to fix flaws found during HealthCare.gov's rocky rollout last year, it has not "fully addressed security and privacy management weaknesses" that have placed data "at risk." This report comes less than a month after it was reported that malware had been uploaded onto a HealthCare.gov server. No data was stolen during that incident. "Until these weaknesses are addressed, increased and unnecessary risks remain of unauthorized access, disclosure, or modification of the information collected and maintained by Healthcare.gov," the report said. It also cited the lack of an alternate processing site to keep the system running if HealthCare.gov slows or goes down.
IN-DEPTH
- Surgery Prices Surge With Innovation and Consolidation Under Obamacare
- Who Gets Ebola Drugs? AIDS, Dialysis and Cancer 'Cures' Point the Way
