AstraZeneca password lapse exposed patient data

Pixel_

Pixel_

Level 4
Thread author
Well-known
Jun 7, 2022
148
1,825
268
Content source
https://techcrunch.com/2022/11/03/astrazeneca-passwords-exposed-patient-data/
Pharmaceutical giant AstraZeneca has blamed “user error” for leaving a list of credentials online for more than a year that exposed access to sensitive patient data.

Mossab Hussein, chief security officer at cybersecurity startup SpiderSilk, told TechCrunch that a developer left the credentials for an AstraZeneca internal server on code sharing site GitHub in 2021. The credentials allowed access to a test Salesforce cloud environment, often used by businesses to manage their customers, but the test environment contained some patient data, Hussein said.
Click to expand...

techcrunch.com

AstraZeneca password lapse exposed patient data

Internal passwords were online for more than a year before a good-faith security researcher found them.
techcrunch.com techcrunch.com
 
  • Wow
  • Sad
  • Like
Reactions: upnorth, Gandalf_The_Grey, The_King and 5 others
You must log in or register to reply here.

You may also like...