GAO: Healthcare.gov experienced more than 300 security incidents in less than 2 years
According to a report from the U.S. Government Accountability Office (GAO), Healthcare.gov, the federal marketplace for health insurance, experienced 316 known security-related incidents from October 2013 to March 2015.
Overall, the GAO recommended 27 different actions to improve discovered weaknesses. The specific actions were shared with CMS in a separate, private report.
The GAO added that state-based health insurance marketplaces also had problems, including “insufficient encryption and inadequately configured firewalls.” CMS should define procedures for overseeing these marketplaces and require around-the-clock security monitoring, the office recommended.
The GAO report can be read in full on its website.