ST. PAUL, Minn. (AP) -- Internet security experts have identified flaws in Minnesota's online health insurance marketplace that could compromise sensitive consumer data.
Minnesota Public Radio reports the MNsure website is vulnerable to "rogue access points." Such devices can masquerade as a standard wireless connection to the Internet. But when a user connects to the device it strips away security measures, allowing the hacker to see information passing between the user and MNsure's site.
When sensitive information is involved, websites typically offer encrypted connections so no one can eavesdrop. Some websites sever connections if the customer's computer or smartphone fails to use encryption to secure the communication. But MPR reports MNsure's site allows unsecured transmissions to go through.
The state's chief information security officer says the threat of this kind of attack is low.
All content © Copyright 2001 - 2014 WorldNow and KTTC, a Quincy station.
Persons with disabilities who need assistance with issues relating to the content of this station's public inspection file should contact Administrative Assistant Jodi Neyens at (507) 280-5104. Questions or concerns relating to the accessibility of the FCC's online public file system should be directed to the FCC at 888-225-5322, at 888-835-5322 (TTY) or at email@example.com.