Inspector: Security Holes Found in IRS Obamacare System

[InfoSec News <alerts () infosecnews org>]

http://www.nextgov.com/cybersecurity/2014/12/inspector-security-holes-found-irs-obamacare-system/100286/

By Aliya Sternstein
Nextgov.com
December 2, 2014

A core IRS system for calculating Obamacare fees for health insurers and 
drug manufacturer has security weaknesses, according to an internal audit.

Under the Affordable Care Act, insurers must report their net premiums to 
the tax agency annually, and pharmaceutical companies must submit sales 
data from certain government programs.

The Treasury Inspector General for Tax Administration recently examined a 
new computer application, called the ACA Information Returns system, known 
as AIR, that processes these returns. The IG's heavily-redacted 44-page 
report, released on Tuesday, suggests, specifically, the agency neglected 
to check source code for bugs and fix security vulnerabilities.

"These security control weaknesses could impact the AIR system’s ability 
to reliably process the electronic form reports and to accurately 
determine the applicable fees," TIGTA Deputy IG for Audit Michael E. 
McKenney said in the report.

[...]

--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/