"...a Sept. 27 government memorandum surfaced in which two HHS officials said the security of the site had not been properly tested before it opened, creating "a high risk."
Okay, so they still had a couple days to fix that, right?
"...vulnerabilities remain on "everything from hacking someone's computer so when you visit the website it actually tries to hack your computer back, all the way to being able to extract email addresses, users names—first name, last name—[and] locations."
It's almost like they're inviting identity theft (and yes, I checked: according to OpenSecrets, LifeLock's Todd Davis didn't donate a penny to the President's campaigns).
The truly scary part is that it's likely to take up to a year to fix these holes - if they can be fixed; a "white hat hacker" recently testified to Congress that it's virtually impossible to retrofit the kind of necessary security measures into the existing system: