TOPEKA, Kan. (AP) - A consultant hired by the state to try and break into the computers at the Kansas Health Policy Authority had no luck using a password cracker.
But he did much better by setting up an e-mail account impersonating a state computer technician and sending messages to 30 employees asking for their passwords.
Fourteen gave the passwords to him, no questions asked.
State officials say while the Health Policy Authority does a good job training new employees on computer security, they need to do ongoing training to keep people vigilant in the future.
(Copyright 2008 by The Associated Press. All Rights Reserved.)