SC Magazine: MongoDB database exposes more than 2 million Mexican patients

August 7, 2018 — The database was used to contain healthcare information of a Mexican hospital patrons.

Ryan Wilk, VP at NuData, comments on a report issued yesterday by SC Magazine, disclosing that massive amounts of PII on 2,373,764 Mexican patients were in a database, which had vulnerabilities allowing exposure to fraudsters without a password. Not only was PII left exposed, but so were email addresses and encrypted passwords for admin accounts at the hospital, leaving them vulnerable for more breaches, as well as phishing attacks.

This kind of PII is among the most sensitive that you can imagine, and provides insight into an individual that cybercriminals could use for further cybercrime such spear phishing, blackmail or even identity fraud.
For the complete article, go here.