Tag Archive: security breach


Hacker Breached HealthCare.gov Insurance Site

 

 

 

” A hacker broke into part of the HealthCare.gov insurance enrollment website in July and uploaded malicious software, according to federal officials.

  Investigators found no evidence that consumers’ personal data was taken in the breach, federal officials said. The hacker appears only to have accessed a server used to test code for HealthCare.gov. The Department of Health and Human Services discovered the attack last week.

  An HHS official said the attack appears to mark the first successful intrusion into the website, where millions of Americans bought insurance starting last year under the Affordable Care Act. It raised concerns among federal officials because of how easily the intruder gained access and how much damage could have occurred.”

 

Read more

 

 

 

 

 

 

 

 

 

 

 

Records Prove Muslim Brotherhood Delegates Skipped Airport Inspections

 

 

 

” Newly released records confirm a 2012 Investigative Project on Terrorism (IPT) report that the State Department cleared the way for a visiting delegation of Muslim Brotherhood officials to enter the country without undergoing routine inspection by U.S. Customs and Border Protection agents.

  The April 2012 visit came before the Muslim Brotherhood’s candidate was elected Egypt’s president, although the Brotherhood’s Freedom and Justice Party (FJP) had won a plurality of seats in parliamentary elections. The expedited entry is known as a “port courtesy” normally reserved for high-ranking visiting government officials and dignitaries.

  The records, marked “sensitive but unclassified,” were obtained through a Freedom of Information Act request. They offer few details. The State Department released a one-page document labeled “Compiled References to MB Delegation Arrival and Departure” containing four separate communications between March 30 and April 16, 2012 about the Brotherhood delegation. It is not clear who wrote them or who received them.”

 

 

Illustration by Mike Lester

 

 

 

 

 

 

 

How to Enable Two-Factor Authentication On Twitter (And Everywhere Else)

 

 

 

” Twitter rolled out two-factor authentication last week, joining a growing group of tech companies to support the important security feature. Two-factor authentication can help mitigate the damage of a password breach or phishing attack.

The Three Authentication Factors

  • A knowledge factor, like a password or PIN. Something you know.
  • A possession factor, like a key or a hardware dongle. Something you have.
  • An inherence factor, like a fingerprint or an iris. Something you are.

The principle comes from the idea that any authentication system—whether it’s the deadbolt on your front door, the lockscreen on your smartphone, or the bouncer at a secret clubhouse—works by confirming something you know, something you have, or something you are. Each of these are called “factors.”

Normal password logins just check whether you know a password, which means anybody else who learns it can log in as you. Adding a second factor—in this case, checking something you have, your phone—means that even if your password is compromised by, say, a keylogger in an Internet cafe, or through a company’s security breach, your account is safe.”