An attacker broke into a server used to test code for HealthCare.gov and uploaded malicious software. Eric Cowperthwaite: This was the result of simple, compounded mistakes that went overlooked. He says security teams are struggling with data overload. They cant patch all the vulnerable systems, so theyre playing whack-a-mole, addressing them at random or based on which ones are the easiest to fix. When they’re overwhelmed, regular and consistent network monitoring is next to impossible. Solutions and strategies that help them prioritize remediation efforts and shorten response times will break this vicious cycle.”]
Source: https://www.csoonline.com/article/2604026/why-the-healthcare-gov-breach-matters.html