Breach, Data Security, Threat Management

Personal info of over 50,000 customers leaked from COVID-19 testing site operator

Comparitech, a consumer privacy watchdog, found that approximately 52,000 of Premier Diagnostics patients had their sensitive information exposed due to a possible data breach after the Lehi, Utah-based company used a publicly accessible server to store sensitive information, KSTU-TV reports. The diagnostic firm operates 11 COVID-19 testing sites all over northern Utah, and patients are required to submit pictures of their driver’s licenses, passports and insurance ID cards. “They had stored all that data on a server that was publicly accessible online without a password,” said editor Paul Bischoff. A Comparitech researcher discovered the issue on Feb. 22 while performing a scan of unsecured databases on the internet. The data was secured on March first, Bischoff said. While the database did not contain any payment information, Bischoff worries that the information involved in the potential leak could be used in medical insurance fraud.
Jill Aitoro

Jill Aitoro leads editorial for SC Media, and content strategy for parent company CyberRisk Alliance. She 20 years of experience editing and reporting on technology, business and policy.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.