One of India's largest lab testing facility Dr. Lal PathLabs allegedly left millions of their patients' data on a public server for months. It was not confirmed until a security expert found the exposed data to an Amazon server, without any need of password.
Indian patients' data gets exposed!
A giant lab testing facility in India was recently caught on a major data breach. Tech Crunch first reported that Dr. Lal Pathlabs, headquartered in New Delhi, stores millions of their customer' data via a public server of Amazon Web Services host (AWS).
Australia-based security expert Sami Toivonen found the data breach exposure online in September. He immediately reported it to Dr Lal PathLabs, wherein the company quickly close the access to the file.
However, after this incident, Toivonen revealed that the company did not even explain how the information was breached online or how long these data was sitting on a public server, without passwords.
In definition of without passwords, anyone that are not even hackers could access the data without hassle.
All the patients' data were put in a large spreadsheets wherein each contains patient's name, address, gender, date of birth, and mobile number.
To make it worse for the patients, the details of the test that the patient is taking, which could include the person's health issues or medications were also found in the spreadsheets.
Related Article: Cheapest Coronavirus Testing Kit That Costs Less Than $30 Found in a 3rd World Country
COVID-19 info also revealed
Aside from the health issues of each patient of Dr. Lal PathLabs, there were also remarks in the spreadsheets that could be showing which patients were tested for Coronavirus or found positive to it.
So far, the lab testing company has not yet released any statements regarding the issue.
Also Read: Coronavirus Can Be Reactivated After COVID-19 Patients Survived; Second Time Can Be Fatal
This article is owned by Tech Times
Written by Jamie Pancho
