Millions of records belonging to patients worldwide, including X-Rays, mammograms and MRI scans, were long freely accessible online without basic security measures, German authorities said Tuesday after a media investigation.
ProPublica and Bavarian public television BR reported that some 16 million records were available "unprotected on the internet and available to anyone with basic computer expertise", protected by neither a password nor encryption.
It is unclear how much of the data has now been safely sealed away by the various hospitals and other health care providers affected in dozens of countries.
"Several thousand patient records were accessible," confirmed Germany's Federal Office for IT Security (BSI), referring only to some 13,000 of the country's citizens affected.
"The patient data could be accessed as the simplest IT security measures, like access control using usernames and passwords, or encryption, were not implemented."
Disclaimer: No Business Standard Journalist was involved in creation of this content