18 Apr Medical office security — a nightmare situation.

The sweep that we completed a while back in a medical office found a vulnerability that exposed ALL PATIENT RECORDS.

We checked for the usual hidden microphones; all that was discovered was a cordless phone vulnerability. While working in the area we couldn’t help but notice a zillion patient records that were in an unlocked area. This risk was highlighted by a cleaner who arrived while we were working. Later, asking the client who the cleaner was we discovered that they were just another “invisible” vendor.

What if the vendor was interested in reading/copying/posting medical information from all the local politicians? Scary.

In today’s world patient records need to be protected whether they are in paper or electronic format.