Configuration errors lead to breach

The Health and Human Services Department (HHS) said that, the nation’s health insurance enrollment website, was breached in July and that the attackers uploaded malware to the server.

The breach, which is the first successful intrusion into the website, was discovered on August 25 by a CMS security team after an anomaly was detected in the security logs of one of the servers on the compromised system.


Read more: Configuration errors lead to breach

Story added 5. September 2014, content source with full text you can find at link above.