Next, analyze the following hypothetical situation:

As a web application security specialist, you will perform an audit of a web application recently developed by programmers at your company, the INORG medical plan, to enable plan member members to check the status of their claims through a portal. In the process, you discover security vulnerabilities that expose the personal and health information of INORG plan member customers to the entire Internet.

Briefly argue about the following situation in the forum:

Are the vulnerabilities found in the INORG portal $($web application$)$ just security issues or do they violate any laws?

When stating your answer in the forum you should:

Explain the importance of knowing the laws and regulations governing the companies we work for.

Develop a reasoned opinion, presenting your arguments from the perspective of what you read in chapter $7$ of the textbook and HIPAA.