- MDAT found more than 1.2 million wrongly composed devices leaking information
- This includes MRI scanning, X -ray and other sensitive files, along with patient communication data
- The researchers warn that the healthcare industry needs a proactive approach to cybersecurity
The researchers have warned of the presence of more than a million health care devices connected to the Internet, which are wrongly formed, and all the data they generate on the Internet leakes – millions of people are at risk of stealing identity, hunting, wire fraud, and more.
Modat recently surveyed the Internet in search of unprotected, unprotected devices, devices and data, using the “Health Care” brand, found more than 1.2 million generations, and leaks, secret medical images including MRI, X -rays, and bloodshed, from hospitals around the world.
“Examples of data that were leaked in this way include brain and X -ray tests, storing them as well as protected health information and the patient’s personal information, which is likely to be a breach of the patient’s confidentiality and specialization,” the researchers explained.
Weak passwords and other problems
In some cases, the researchers found that the information is not closed and available to anyone who knows where to look – and in other cases, the data was protected by weak and predictable passwords that did not constitute any challenge to break and seize it.
They added, “In the worst scenario of cases, the sensitive medical information that has been leaked by reassured victims can leave open to fraud or even extortion on a secret medical condition,” they added.
In theory, the threat actor can learn the patient’s condition before that. Along with names and contact details, they can communicate with the patient and threaten to issue information to friends and family, unless they pay a ransom.
Instead, they can impersonate the doctor or hospital and send email messages to hunt the deception to invite the victim to “display sensitive files” that would re -direct them to download harmful programs or share entry login data.
The majority of the wrong devices are in the United States (174K+), with South Africa approaching second (172k+). Australia (111K+), Brazil (82 kg+), and Germany (81K+) around the first five.
For MDAT, the pre -emptive security culture “outperforms an interactive response.”
“This research enhances the urgent need to see comprehensive assets, management of strong weakness, and a proactive approach to securing each Internet connected to health care environments, and ensuring that the patient’s sensitive patient data remain protected from unauthorized access and potential exploitation,” Aerol Wes, chief security official in ISAC.