Arkansas and Illinois both reportedly exposed sensitive citizen data after failing to adequately secure web services that the states urgently propped up in order to process applications for the federal Pandemic Unemployment Assistance program.
Experts say the hurried pace of setting up these digital services could very well have resulted in glitches and overlooked gaps in security.
"While it's unfortunate, it also should have been expected that in the urgency to rollout out Pandemic Unemployment Assistance to millions of people overnight, there would be inadvertent vulnerabilities," said Mark Weatherford, chief strategy officer at the National Cybersecurity Center and and a former CISO for the states of California and Colorado. "The lack of appropriate software development due diligence is almost always the first casualty in an emergency situation.
Please register to continue.
Already registered? Log in.
Once you register, you'll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.