Contact Tracing Data Breach Exposes 72,000 Pennsylvanians’ Personal Information
by davz - May 03, 2021 at 08:43 PM
#1
Contact Tracing Data Breach Exposes 72,000 Pennsylvanians’ Personal Information

The Pennsylvania Department of Health says that it will not renew its contract with Insight Global.

A COVID-19 contact tracing breach in Pennsylvania may have impacted at least 72,000 people.

The number of people whose data has been compromised could grow, according to cyber security experts.

The Pennsylvania Department of Health hired Atlanta-based firm Insight Global to perform contact tracing.


They say the company had disregarded safety protocols, with some employees creating Google accounts to share data, including information gathered from contact tracing calls.

Those documents were left unprotected and that made them vulnerable to access.

“If you go through all the trouble of creating this environment where everything’s protected, why did you go outside of that?” asked cybersecurity expert Zen Piotrowski with CMIT Solutions.

It is a question many are asking as well as how long the exposed information has been available.

The leaked information includes names, phone numbers, email addresses, genders, and COVID-19 diagnosis or exposure.

However, financial accounts and social security numbers were not part of those lists.


Full story here: https://pittsburgh.cbslocal.com/2021/04/...ta-breach/
Reply
#2
Dying to know if it was an exposed s3 bucket, or a webserver with indexing turned on or what.
Reply

Possibly Related Threads…
Thread Author Replies Views Last Post
“Catastrophic” Ubiquiti Breach Crin 10 1,433 April 29, 2021 at 09:22 PM
Last Post: JamesNothington
Software testing firm Codecov discloses Breach umerkhan 3 388 April 21, 2021 at 04:27 PM
Last Post: krasnodarz
Geico data breach exposed customers’ driver’s license numbers for more than a month umerkhan 7 340 April 21, 2021 at 12:32 AM
Last Post: umerkhan

 Users browsing this thread: 2 Guest(s)