According to Gizmodo’s recent news report, over 1.5 Million private medical records were inexplicably exposed on a public subdomain of Amazon Web Services. The leaked data consist of police injury reports, detailed doctor visit notes, and social security numbers.
In ahead of schedule September, Texas Tech enthusiast Chris Vickery discovered an information security loophole that revealed a huge amount of data publicly on the Internet.
The exposed data belonged to companies such as Kansas’ State Self Insurance Fund, CSAC Excess Insurance Authority, and the Salt Lake County Database.
Upon getting deeper into the issue, Vickery understood that the source of the data was a small insurance company — Systema Software, which handled all this security blunder. Shortly after this finding, all the data was disappeared from Amazon subdomain.
Systema Software COO Danny Smith recently got in touch with Chris Vickery over email. According to Smith, the data was left publicly visible on the Internet due to a contractor’s mistake.
However, Vickery apparently agreed to handover the data to the Texas Attorney General, where it will be destroyed.
“As is common with similar events, until the investigation is completed, it will be difficult to confirm the full scope of the incident, but we will continue to work vigilantly to address this issue and will provide updates as we learn more from our review,” Systema told Gizmodo.