Put on your shocked faces:
The site was reportedly hacked in July. Federal officials didn’t find out until August 25.
No, no, no. The government says you have nothing to worry about:
Investigators found no evidence that consumers’ personal data was taken in the breach, federal officials said. The hacker appears only to have accessed a server used to test code for HealthCare.gov. The Department of Health and Human Services discovered the attack last week.
Rather, investigators found that in July, the intruder did just one thing: install malware on a HealthCare.gov server so it could be used in future cyberattacks against other websites, federal officials said. Hackers often take over troves of computers and servers to direct mischief traffic at websites. The rush of traffic, known as a denial of service attack, overwhelms the site and knocks it offline.
“There is no indication that any data was compromised at this time,” DHS spokesman S.Y. Lee said in a written statement. “DHS will continue to monitor the situation and help develop and implement precautionary mitigation strategies as necessary.”
And with these guys in charge, we can rest easy.
More from Rep. Darrell Issa: