I was listening to testimony on this yesterday, when they were talking about end to end security for the system. No surprise here, there is none.
They are not even encrypting the data being entered on the back end. The system is complete shit.
Just like McAfee said, this is a hackers wet dream.
Anybody wanna take a guess how many identity thefts are going to occur when the site is hacked? For clarification, its not "IF" the site is going to be hacked, it is "WHEN".