• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Millions of Medical Imaging Files Freely Accessible on Unprotected Servers

You are here: Home / General Cyber Security News / Millions of Medical Imaging Files Freely Accessible on Unprotected Servers

About 45 million clinical imaging files are freely accessible on unprotected servers, according to a new investigation by CybelAngel. 

The researchers identified that a huge vary of sensitive health-related photos, such as X-rays and CT scans, can be accessed without the need for a username and password. Situations were being even uncovered of login portals accepting blank usernames and passwords.

The crew scanned around 4.3 billion IP addresses, and uncovered that far more than 45 million of these visuals were left exposed on more than 2140 unprotected servers across 67 international locations together with the US, UK and Germany.

✔ Approved Seller by TheCyberSecurity.News From Our Partners
F Secure Safe 2021

Protect yourself against all threads using F-Seure. F-Seure is one of the first security companies which has never been backed up by any governments. It provides you with an award-winning security plus an optimum privacy.

Get F-Secure Safe with 65% discount from a bitdefender official seller SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


CybelAngel also uncovered that particular data was amongst the info remaining unencrypted and with no password defense on-line. This includes individually identifiable details such as identify, delivery day, handle and personalized health care information including height, pounds and analysis.

The easy availability of this kind of imagery and information leaves patients at risk of blackmail and ransomware as nicely as fraud, in accordance to the research authors, who observed that health-related knowledge is in large demand from customers on the dark web.

The investigators included that health care vendors may possibly be liable to sanctions for these breaches of delicate individual details below info safety legal guidelines this kind of as the GDPR in Europe.

Creator of the report, David Sygula, senior cybersecurity analyst at CybelAngel commented: “The fact that we did not use any hacking tools through our research highlights the simplicity with which we were being ready to find and entry these documents. This is a regarding discovery and proves that a lot more stringent security processes must be set in area to guard how delicate health-related details is shared and stored by healthcare professionals. A equilibrium between security and accessibility is imperative to avoid leaks from turning out to be a main information breach.”

Todd Carroll, VP cyber functions at CybelAngel added: “Medical centers function with a wide, interconnected web of third-party companies and the cloud is an essential platform for sharing and storing facts. Even so, gaps in security, this kind of as this, existing a huge risk, both equally for the people whose facts is compromised and the healthcare institutions that are ruled by laws to secure patients’ data.

“The wellness sector has faced unprecedented issues this yr, nonetheless the security and privacy of their patients’ most own information will have to be protected, to stop remarkably private data falling into the completely wrong fingers.” 


Some sections of this post are sourced from:
www.infosecurity-magazine.com

Previous Post: «Cyber Security News DHS, CISA and NCSC Issue Warnings After SolarWinds Attack
Next Post: #BSEC: Staying Alert to the Growing Dangers of Cybercrime Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Recent Posts

  • Big Tech Bans Social Networking App
  • Lack of Funding Could Lead to “Lost Generation” of Cyber-Startups
  • Unveiled: SUNSPOT Malware Was Used to Inject SolarWinds Backdoor
  • ‘I’ll Teams you’: Employees assume security of links, file sharing via Microsoft comms platform
  • DarkSide decryptor unlocks systems without ransom payment – for now
  • Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group
  • Millions of Social Profiles Leaked by Chinese Data-Scrapers
  • Feds will weigh whether cyber best practices were followed when assessing HIPAA fines
  • SolarWinds Hack Potentially Linked to Turla APT
  • 10 quick tips to identifying phishing emails

Copyright © TheCyberSecurity.News, All Rights Reserved.