Australians, don't forget to opt-out[0] of MHR before November 15th (eg, do it NOW). Our Government can't even run a census[1], let alone be trusted to keep our medical data safe.<p>[0] <a href="https://www.myhealthrecord.gov.au/for-you-your-family/opt-out-my-health-record" rel="nofollow">https://www.myhealthrecord.gov.au/for-you-your-family/opt-ou...</a><p>[1] <a href="https://www.lifehacker.com.au/2016/08/what-organisations-can-learn-from-the-abs-census-fail/" rel="nofollow">https://www.lifehacker.com.au/2016/08/what-organisations-can...</a>
Dammit. I wish you could delete accounts. I have tons of accounts and can’t seem to find links or settings to delete any of them to reduce my exposure to this crap.
American taxpayers paid over 500 million for Healthcare.gov.<p><a href="https://en.wikipedia.org/wiki/HealthCare.gov" rel="nofollow">https://en.wikipedia.org/wiki/HealthCare.gov</a>
Would be nice if they would publish the known search strings. Right now I am assuming "expected income >= 100,000" - that could give many a sigh of relief perhaps. Article mentions "engaged in excessive searching” and some of the details taken include "expected income"<p>At this point hackers could be a better source of credit rating given that they could combine info from hacks like this and the other credit agency (experian?) hacks with other insurance hacks (anthem?) -<p>I wonder if my signup app info is still in this system from a couple years ago or has been removed?
I started the signup process when I was between jobs, but stopped because I got an offer.<p>For months I kept receiving e-mail reminding me that my application was incomplete, and cajoling me to finish.<p>I wonder if the hackers got my partial information, or if it was only stored in affected systems after completion.
Data leaks like this are inevitable. Plan for it, moot the problem with proper design.<p>The correct answer is to encrypt all demographic data (PII) at rest using translucent database techniques.<p>Just like a properly salted, encrypted password store.<p>Because of data interchange, individuals will need globally unique identifiers, eg Real ID.<p>(These systems still require access & audit logs.)