Medical scans of millions of patients exposed online dumps credit card numbers, credit card dumps reddit

Other leaked data included a range of personal information such as names, addresses and personal healthcare information.
Over 45 million medical imaging files including X-rays and CT scans have been found sitting unprotected on internet-facing servers and accessible for anyone to view. 
The discovery of the leaked data from hospitals and medical centers from around the world was the result of  a  six-month-long investigation  by CybelAngel’s research team into Network Attached Storage (NAS) and Digital Imaging and Communications in Medicine (DICOM). The investigation uncovered millions of unique images stored on more than 2,140 unprotected servers located across 67 countries including the United States, the United Kingdom and Germany.   
However, to make matters worse, some images included dozens of lines of metadata per record disclosing Personally Identifiable Information (PII) such as names, birth dates, addresses, and personal healthcare information indicating patient’s height, weight, and even diagnosis. 
The sum of all the data could allow threat actors with malicious intent to create a comprehensive portrait of their potential targets. This could lead to the affected patients becoming victims of  identity theft ,  phishing , extortion,  financial  and other types of fraud. Alternatively, cybercriminals could also sell the data on dark web marketplaces.
“This is a concerning discovery and proves that more stringent security processes must be put in place to protect how sensitive medical data is shared and stored by healthcare professionals. A balance between security and accessibility is imperative to prevent leaks from becoming a major data breach,” said David Sygula, a Senior Cybersecurity Analyst at CybelAngel. 
Since some of the medical institutions are located in the European Union (EU), they are subject to the EU’s  General Data Protection Regulation , which means that the failure to secure patients’ sensitive data could lead to penalties and legal actions. 
Misconfigured and unsecured internet-facing databases can hardly be considered an uncommon occurrence. The investigation may bring echoes of a similar incident we reported on earlier this year which involved  sensitive plastic surgery photos being exposed online .
The issue of hacking medical data can be expected to grow exponentially as Federal, State, and International governments, insurance companies, employer corporations, and medical corporations encourage the use of Telemedicine, especially across state lines and even international borders. This frequently involves “specialists” who interpret images and pathology slides, and provide consultations. And while this may frequently enhance medical care, a significant amount of it is being done and will continue to be done solely for economic reasons with quality of care being only a secondary consideration. The traditional privacy protection regulations and practices and the insistence on being able to ensure quality of care through licensing under the guidance of the medical community are now largely ignored and are being steadily eroded by government bureaucrats and commercial actors
A semi-retired radiologist can interpret imaging studies or a pathologist can consult and make a diagnosis from the comfort of their homes, airports, or Starbucks hundreds or even thousand of miles away from the location where the images were made and the specimens collected and processed. And while “world class” experts may, hopefully, be working on reasonably well protected institutional computer systems, they can also be working from their homes, airports, or Starbucks just as independent “specialists” can be doing.
The real problem with many of these scenarios is that a significant number of the independent specialists and even many of the institutionally based experts, will likely not have the expertise, let alone financial wherewithal to optimally protect the data they receive, transmit and store when using their own independent PCs and laptops.
dumps credit card numbers credit card dumps reddit