Medical Software Database Exposes Personal Data of 3.1M Patients
A medical software company’s database containing the personal information of more than 3.1 million patients was left exposed online without the need for a password or other authorization, according to security researcher Bob Diachenko.
The leaky database appears to be owned by vendor Adit, a developer of online booking and patient management software for at medical and dental practices. The search engine BinaryEdge indexed the unsecured database on July 12, which was discovered by Diachenko the following day.
Diachenko immediately investigated and reached out to...