Medical records of millions of people around the world exposed by insecure software

Oct 23, 2019 12:00 am Cyber Security 254

A group of information security specialists from the security firm WizCase has reported the finding of multiple data leaks from medical websites and software solutions around the world. The compromised information includes prescriptions, diagnoses, Social Security numbers and, in many cases, full names and addresses.

All databases were found unsecured, as experts not even needed a password to access the information, leaving millions of patients and medical staff members exposed.

The research leader Avishai Efrat discovered nine unsecured medical databases in countries such as Saudi Arabia, Brazil, Canada, China, the United States, France and Nigeria. Although they vary in each particular case, in general the details presented include:

Full names

Phone numbers

Home address

Email address

Workplace

Social security numbers

Diagnostics

Medical prescriptions

Clinical test results

Data leaking infographic. Source: WizCase

With regard to the companies operating these databases, the information security experts were also able to establish a detailed profile, described briefly in the following paragraphs.

Saudi Arabia: Health-applying software company Stella Technology exposed more than 4 GB of information belonging to nearly 300k patients, including multiple personal details, on an Elasticsearch server

Brazil: The database exposed in Brazilian territory, operated by the company Biosoft Medical Software, has 3 GB of information, equivalent to almost 1.2 million records belonging to patients throughout the country

Canada: In the case of Canada, the company involved is Dental Software, with its ClearDent solution. In this case, an 8 MB database, equivalent to nearly 60k exposed patients, was discovered on an El ..

Support the originator by clicking the read the rest link below.