Glenn,

Yesterday you asked "They hacked the system. Could they or did they change
anything?  Or is this just data gathering.   This is data for background
info. Someone wanting to do us harm could potentially be given a gold
pass.  HMM should we be worried?"

The last paragraph essentially answers your question - they aren't sure and
may not for years.  Not good news if you are a government employee.

What scares me in the push for electronic medical records.  Everything I
have read indicates that security is not necessarily on the top of
priorities when rolling out these systems.  The FBI and other organizations
in the know state that "bad buys" see access to these systems as a pot of
gold.  Lots of money to be made filing false claims.  Like the fake tax
returns once the payment is made very difficult to claw back the dollars.

Bruce White, CRM, PMP
Radnor, PA
e-mail: [log in to unmask]
LinkedIn:  http://www.linkedin.com/in/bblanco

"Life is like riding a bicycle. To keep your
balance you must keep moving." -- Albert Einstein

On Thu, Jun 18, 2015 at 2:36 PM, PeterK [log in to unmask] [RAINbyte] <
[log in to unmask]> wrote:

>
>
> But even if the systems had been encrypted, it likely wouldn't have
> mattered. Department of Homeland Security Assistant Secretary for
> Cybersecurity Dr. Andy Ozment testified that encryption would "not have
> helped in this case" because the attackers had gained valid user
> credentials to the systems that they attacked—likely through social
> engineering. And because of the lack of multifactor authentication on these
> systems, the attackers would have been able to use those credentials at
> will to access systems from within and potentially even from outside the
> network.
>
>

List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance
To unsubscribe from this list, click the below link. If not already present, place UNSUBSCRIBE RECMGMT-L or UNSUB RECMGMT-L in the body of the message.
mailto:[log in to unmask]