Healthcare.gov Hack Teaches Lesson in Security Awareness

We’ve said it before and we’ll say it again:

You can’t afford not to invest in security awareness today.

Today, an attack discovered on Healthcare.gov emphasizes the very core of that lesson. Security starts with awareness.

Although the website hack doesn’t appear to have compromised any personal data, that doesn’t negate the importance of such an attack. The hack exploited a compromised default password to a test server to gain access to the site. In our previous security awareness blog, we stressed one way of ensuring secure data is frequent password resets requiring an original password. Default passwords are never a good idea and are easily compromised – a lesson learned with an investment in security awareness training.

THE ONE THING: You can’t afford not to invest in security awareness today.