""Thank you for bringing this to our attention. We take data security and patient privacy very seriously. Our team is actively investigating this matter and will address any security issues promptly.""
""Health data is unique because it stays with individuals forever, whereas banking or credit information can be changed," the research states. "Criminals also value this information because it could potentially enable a wide range of fraudulent activities, including extortion, identity theft, prescription fraud, false medical billing, and even the creation of synthetic identities that may go undetected for years. On the black market, health records are often sold at a higher price than financial data because they contain comprehensive personal and health profiles of individuals.""
A publicly accessible healthcare database contained approximately 145,596 files in formats such as PDF and PNG. The repository included home health certifications, plans of care, assessments, discharge forms, and other medical documents. The documents contained patient names, identification numbers, physical addresses, phone numbers, and Social Security numbers. Records indicate the information belongs to Archer Health, Inc., but ownership of the exposed system is unclear. A responsible disclosure notice received a response stating the organization is investigating and takes data security seriously. The exposure lacked password protection or encryption, and it is unknown if any threat actor accessed the data.
Read at Securitymagazine
Unable to calculate read time
Collection
[
|
...
]