45 million images of various medical scans were freely accessible online by anyone, with absolutely no protection, security company claims.
The security research company CybelAngel reported that besides leaving sensitive personal information unsecured, hospital servers are full of malware. The security is so bad, that the researchers could easily access private files without using any hacking tools.
Exposed data includes:
- X-rays and CT scans
- Personal identifiable information (name, birth date, address)
- Personal health information (height, weight, diagnosis)
Hospitals use outdated protocols (the 1980s DICOM medical data transmission protocol) and unsecured NAS storage, making all data accessible and exposed to the public internet. Even if the DICOM protocol is quite old, it demans security protocols, but they’re only optional.
This Standard assumes that the Application Entities involved in a DICOM interchange are implementing appropriate security policies, including, but not limited to access control, audit trails, physical protection, maintaining the confidentiality and integrity of data, and mechanisms to identify users and their rights to access data. Essentially, each Application Entity must insure that their own local environment is secure before even attempting secure communications with other Application Entities.
Last year, Greenbone Networks previously discovered that the medical information of over 24 million people has been exposed online.
Check the source.
- Most Companies Aren’t Ready For The Greatest Cyber Threat Of 2021 – RansomwareOne would think that ransomware, currently the most significant cyber threat out there, keeps all organizations on edge and […]
- Patch These 5 Vulnerabilities Now To Protect Your Company From Ransomware AttacksHackers are actively exploiting years-old security vulnerabilities to launch ransomware attacks because organizations skip on patching them. Some of […]
- Fileless And Encrypted Malware Saw Massive Growth in Q2 2021A new report analyzing malware trends in the second quarter of 2021 shows that cyber threats are becoming stealthier, […]
- Massive Phishing Attack Hits At Least 6,000 Coinbase UsersCrypto exchange Coinbase confirmed that funds were stolen from at least 6,000 accounts in a vast phishing attack this […]
- The 3 Top Ransomware Threats Might Surprise YouNo, it’s not Revil, Ragnar Locker, BlackMatter, or Conti to make it to the top three ransomware threats responsible […]