CybelAngel, a world leader in digital risk protection, discovered over 45 million medical imaging files – such as CT scans and X-rays– which were accessible online on unprotected servers. These findings were released in CybelAngels’s report “Full Body Exposure”, which is the result of a six-month research investigation into Digital Imaging and Communications in Medicine (DICOM) and Network Attached Storage (NAS), which are the industry standard ways in which medical data is sent and received by healthcare professionals.
The team of analysts at CybelAngel uncovered millions of sensitive images, which included scans and medical healthcare information, which were available online, without password protection and unencrypted. CybelAngel used their tools to scanned around 4.3 billion IP addresses. From this, they detected over 45 million unique medical images which had been left exposed on more than 2,140 unprotected servers across 67 countries including the US, UK and Germany.