Earlier this month, a publicly exposed database belonging to Care1, a Canadian medical technology company, was discovered without password protection or encryption. The database contained over 4.8 million documents with a combined size of 2.2 terabytes, exposing sensitive patient data.
What Was Exposed?
According to Jeremiah Fowler, the cybersecurity researcher who discovered the data, the database included:
* PDFs of Eye Exams: With patient names, Personal Health Numbers (PHN), doctors’ com