Flaws in OpenEMR's software left 100M patient records vulnerable

A team of cybersecurity researchers found almost 30 bugs in OpenEMR's software, which left millions of patients' medical records vulnerable to hackers, BBC reports.

OpenEMR, one of the most popular open-source EMR applications, houses medical records of more than 30 million patients in the U.S. and an estimated 100 million patients worldwide.

Project Insecurity, the London-based cybersecurity group that identified the software bugs, reported their findings to OpenEMR in July. The group detailed their findings in an online report, published Aug. 7, which labeled many of the bugs as "critical" vulnerabilities that, if exploited, would give hackers access to sensitive patient data.

OpenEMR, which released patches for the software bugs, said it is "thankful" for Project Insecurity's work, according to BBC.

To download Project Insecurity's report, click here.

More articles on cybersecurity:
OCR issuing fewer HIPAA penalties in 2018, report suggests
NIST: How to secure patient records on smartphones, tablets
'Accidental disclosure' is the No. 1 way data breaches happen in healthcare, report finds

© Copyright ASC COMMUNICATIONS 2019. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.


Top 40 Articles from the Past 6 Months