Open Privacy immediately began responsible disclosure of this issue with Vancouver Coastal Health (VCH) in November 2018. However, with limited responses and the breach still ongoing, we made the decision to disclose to a journalist, @FrancescaFiondahttps://podcasts.apple.com/ca/podcast/rooftops-radio-waves-you/id1476566791?i=1000449085670 …
-
-
Prikaži ovu nit
-
VCH informed us that they had undertaken an investigation after our initial report, but that the system under investigation “was deemed secure" and that their “investigation findings leads us to believe that patient information is protected and not being intercepted.”
Prikaži ovu nit -
In the interests of patient safety and security we made the decision not to release specific details of the broadcast frequency and methods needed to exploit this breach, but as it stands, Vancouver patient health data is accessible to anyone with a $20 software-defined radio.
Prikaži ovu nit -
We cannot say for certain how many patients have been impacted by this breach. We suspect that this breach has likely been on going for several years. We have asked VCH a number of questions regarding how they plan to inform patients about this breach. https://openprivacy.ca/blog/2019/09/09/open-privacy-discovers-vancouver-patient-medical-data-breach/ …pic.twitter.com/aM6KlPP9aM
Prikaži ovu nit -
"VCH takes patient privacy very seriously and is actively working to mitigate the privacy risks you have identified. Please note, however, that VCH has no information to suggest that patient information has been compromised or used for a malicious purpose."pic.twitter.com/KKuiXxlfIO
Prikaži ovu nit -
We clarified that in a hypothetical scenario wherein multiple malicious actors accessed every patient record ever broadcast, it would thus remain the case that VCH has “no information to suggest that patient information has been compromised or used for a malicious purpose.”
Prikaži ovu nit -
Please refer to our press release for a full disclosure timeline, and more information regarding our disclosure and subsequent cooperation with the Office of the Information & Privacy Commissioner for B.C.
@BCInfoPrivacyPrikaži ovu nit -
Coverage of the breach in
@CTVNews@CTVVancouver - Again, based on our research, and statements we have received from VCH confirming these transmissions, there is no "potential" here, it *is* a breach.https://election.ctvnews.ca/potential-health-data-breach-exposing-names-medical-conditions-discovered-by-privacy-researcher-1.4581914 …Prikaži ovu nit
Kraj razgovora
Novi razgovor -
-
-
This exposure of patient data over pager networks is typical for health care systems across North America.
-
Tell me more?
- Još 2 druga odgovora
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.