Dr Lal PathLabs left the data of millions of patients exposed on a public server, TechCrunch reported. Exposed data includes details about patient bookings, names, addresses, gender, date of birth, phone numbers, and details of which tests the patients had availed. Dr Lal PathLabs, one of the largest diagnostic labs in the country with 200 laboratories nationwide, is also a government certified private laboratory for carrying out diagnostic tests for COVID-19 in several states. Some of the exposed records also contained additional remarks, such as whether the patient had tested positive for COVID-19. The company had stored hundreds of large spreadsheets with patient data in a storage bucket hosted on Amazon Web Services without password protection, allowing immediate access to whoever discovered the bucket. Dr Lal PathLabs said the incident involved "less than 0.5% of our records and was immediately fixed" (see their full statement below). An Australian security expert, Sami Toivonen, found the exposed bucket and revealed the extent of the breach. He informed Dr Lal PathLabs in September, which took down access, per the TC report. It's not known for how long the bucket was exposed. The exposure's extent and nature is serious, especially given that it included COVID-related data of some customers. Consider a case wherein a customer on this list indeed has COVID-19, which by now is proven to cause long-term cardiovascular issues in some people. Could an insurance company charge such a person, who once was infected with the virus, a higher premium? Health data…
- Misinformation Combat Alliance and Meta partner on fact-checking helpline on WhatsApp February 22, 2024
- Uniform KYC norms and measures to tackle fake loan apps discussed at Financial Stability Council meeting February 22, 2024
- Apple’s iMessage can now resist attacks by quantum computers February 22, 2024
- India Opens Up Space Sector to 100% foreign direct investment February 22, 2024
- Kerala HC Halts Order for WhatsApp Traceability Amid Privacy Concerns February 22, 2024
Given that Apple itself admits that no threat is currently posed by quantum computing, this move might seem like too much too soon, but...
MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.
Notably, Indus Appstore will allow app developers to use third-party billing systems for in-app billing without having to pay any commission to Indus, a...
The existing commission-based model, which companies like Uber and Ola have used for a long time and still stick to, has received criticism from...
Factors like Indus not charging developers any commission for in-app payments and antitrust orders issued by India's competition regulator against Google could contribute to...
Is open-sourcing of AI, and the use cases that come with it, a good starting point to discuss the responsibility and liability of AI?...
RBI Deputy Governor Rabi Shankar called for self-regulation in the fintech sector, but here's why we disagree with his stance.
Please subscribe to MediaNama. Don't share prints and PDFs.
You May Also Like
Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...
135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...
Twitter takes down tweets from MP, MLA, editor criticising handling of pandemic upon government request
By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...