Doxy.me leak exposes provider data to third parties

Healthcare IT News

Kat Jercich

A CyberScoop report published on Friday found that the telehealth provider Doxy.me had allowed third parties to access data about providers via its virtual waiting room.

According to reporter Tonya Riley, the company appeared to be sharing the URLs of public waiting rooms with Google, Facebook and the marketing vendor HubSpot.

An issue, as Riley explained, is that providers choose the names of their waiting rooms – and they often include their name or the name of their practice.

In other words, that information was also potentially being shared via the URL with third parties.

No patient health data was exposed.

"Doxy.me was notified that...

Get the Morning Update

Thanks for subscribing!