Children’s Health Insurer’s Website Left Vulnerable To Cybercriminals For 7 Years

A failure to apply software security patches made this website an easy target for cybercriminals since 2013. 

by | Feb 22, 2021 | Blog

Children’s Health Insurer’s Website Left Vulnerable To Cybercriminals For 7 Years

A failure to apply software security patches made this website an easy target for cybercriminals since 2013.

Applying updates and patches is a simple yet critical part of effective cybersecurity. Overlooking the process, or even delaying it slightly can leave a system vulnerable to threats that had been identified by the developers.

Case in point: Florida Healthy Kids Corp. was recently breached by hackers, due to vulnerabilities left unpatched for seven years. This resulted in the data of thousands of insurance applicants being illegally accessed by external parties.

How Did This Breach Occur?

In assessing the damage of the breach, a third-party cybersecurity team determined that Florida Healthy Kids Corp.’s website had not been updated or patched since December 2013. The hosting company, Jelly Bean Communications Design, had failed to properly maintain the website, which made it an easy target for cybercriminals.

“Florida Healthy Kids learned that its web hosting vendor had failed to apply security patches to its software, thereby exposing the website to vulnerabilities that were ultimately exploited by the hackers,” according to a statement from the organization.

The breach gave hackers access to individuals’ full names, dates of birth, email addresses, phone numbers, physical addresses, Social Security numbers and more. Florida Healthy Kids Corp. has since transitioned to a new hosting company and will bring their website back online once they are sure it is safe to do so.

How Can You Defend Against This Type Of Breach?

Despite how advanced modern software is, it is still designed by humans, and the fact is that humans still make mistakes. That’s why much of the software you rely on to get work done every day could have flaws — or “exploits” — that leave you vulnerable to security breaches.

Many of the most common malware and viruses used by cybercriminals today are based on exploiting those programming flaws; to address this, developers regularly release software patches and updates to fix those flaws and protect the users.

Comprehensive and regular patch management is a crucial part of proper IT security. In order to maintain a secure IT environment, you either have to make sure your staff is staying on top of all incoming updates or better yet, you need to work with a reliable cybersecurity partner like Orbis Solutions to take care of it for you.

Orbis Solutions

IT Managed Services In Las Vegas

“Orbis’ experienced team assessed our situation, listened to our concerns, and educated us to the ever-changing world of technology. Not only are they professionals at what they do, they’re a pleasure to work with and always have a unique, personal approach to our needs.”
~ Las Vegas Construction Firm
“Thank you Orbis Solutions for providing me and my staff with your monthly Tech Tips. As a business owner I don't have time to keep up with changing technology and your tips are always on point. Always professional and attentive to our growing business needs.”
~ Las Vegas Real Estate Broker
“We are a small business, and therefore do not have the revenue to staff full time IT personnel. So last year, we partnered with Orbis Solutions Inc. and they are the “IT Department” for our company.”
~ Las Vegas CPA Firm