Security Slipup Exposes Health Records & Lab Results

  /     /     /  
Publicated : 23/11/2024   Category : security


Security Slipup Exposes Health Records & Lab Results


NTreatment failed to add password protection to a cloud server, exposing thousands of sensitive medical records online.



NTreatment inadvertently exposed thousands of medical records online by neglecting to add password protection to one of its cloud servers, TechCrunch reports.
The health technology company, which handles electronic health records for doctors, had put 109,000 files in a cloud storage server hosted on Microsoft Azure. Many of these files held medical records, doctors notes, insurance claims, lab test results from third-party providers, and other sensitive information for patients in the United States. None of the information was encrypted.
NTreatment secured the information after TechCrunch reached out. However, its unclear how long the data, which also included internal company files and childrens medical data, was left exposed in the storage server. The company will reportedly notify affected healthcare providers and regulators.
The incident underscores healthcare organizations need to buckle down on protecting patient data. In this case, the data exposed was considered protected under the Health Insurance Portability and Accountability Act (HIPAA). Violating HIPAA can lead to pricey fines, but beyond that, the type of information its designed to protect could prove valuable to cybercriminals.
Fraudsters can leverage the exposed medical records, lab results, doctors notes, insurance claims, and internal company documents to impersonate legitimate patients and commit insurance fraud, seek covered medical care, and refill unauthorized prescriptions, says Jumio CEO Robert Prigge, who adds its likely the exposed data may be circulating on the Dark Web.
Read more details
here
.  

Last News

▸ Travel agency fined £150,000 for breaking Data Protection Act. ◂
Discovered: 23/12/2024
Category: security

▸ 7 arrested, 3 more charged in StubHub cyber fraud ring. ◂
Discovered: 23/12/2024
Category: security

▸ Nigerian scammers now turning into mediocre malware pushers. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Security Slipup Exposes Health Records & Lab Results