More than 45 Million Digital Medical Images Exposed Online

Cybersecurity researchers announced on Tuesday that more than 45 million medical images, including confidential healthcare information of patients, were vulnerably exposed online without encryption and password protection.

Cybersecurity researchers announced on Tuesday that more than 45 million medical images, including confidential healthcare information of patients, were vulnerably exposed online without encryption and password protection.

Cyber threat analysts at CyberAngel, the leading firm in digital risk protection, found the confidential medical images as a result of their six-month long investigation into the Digital Imaging and Communications in Medicine (DICOM) and Network Attached Storage (NAS) used by healthcare organizations.

According to the CyberAngel’s report entitled “Full Body Exposure”, the cyber firm scanned 4.3 billion IP addresses.

The firm said that more than 2,140 unprotected healthcare servers had been identified across 67 countries, including the U.S., Britain and Germany.

The cybersecurity researchers also said that login portals of online healthcare services could be accessed without entering username or password.

“The fact that we did not use any hacking tools throughout our research highlights the ease with which we were able to discover and access these files,” said David Sygula, a senior cybersecurity analyst at CyberAngel and one of the researchers who authored the report.

“This is a concerning discovery and proves that more stringent security processes must be put in place to protect how sensitive medical data is shared and stored by healthcare professionals. A balance between security and accessibility is imperative to prevent leaks from becoming a major data breach,” he added.


© Fourth Estate® — All Rights Reserved.
This material may not be published, broadcast, rewritten or redistributed.