Millions of sensitive patient records from Redcliffe Labs, a diagnostics company based in Noida, India, were exposed in a recent cyber breach incident, according to cybersecurity researcher Jeremiah Fowler.
Furthermore, the breach uncovered a non-password protected database with over 12 million records, including medical diagnostic scans and test results. This database contained extensive medical information, such as patient and doctor names, testing locations, and various other health-related data. While the breach has raised concerns about data security, Redcliffe Labs’ Chief Technology Officer, Prabhat Pankaj, refuted the claim, emphasizing the company’s robust security measures, including firewalls and encryption.
Redcliffe Labs, one of India’s largest diagnostic centers, serves millions of customers across the country and offers a wide range of wellness and illness tests. The breach exposed a folder containing over 6 million PDF documents, suggesting a potentially broader impact.
Investigations into this breach come amidst a lack of data protection laws in India, raising concerns among experts about individuals’ vulnerability to scams and harassment following such incidents. India has witnessed a surge in cyber-attacks, with the healthcare sector being a particular target for data breaches.
Cybersecurity experts have noted that India’s increasing number of cyber-attacks, coupled with a lack of robust data protection regulations, has left individuals exposed to the consequences of data breaches. These incidents can lead to scams, harassment, and discrimination.
As India’s cyber-threat landscape evolves, investing in stronger cybersecurity measures and regulatory frameworks has become imperative to safeguard sensitive data and protect individuals from the aftermath of data breaches.