Cloud EHR vendor nTreatment reportedly left medical records unprotected

Healthcare data management vendor nTreatment left a cloud-storage server containing sensitive health records unprotected, allowing unauthorized access. The server, hosted on Microsoft Azure, contained doctors’ notes, insurance claims, lab test results, and other personal health information. Some of the records belonged to children, and the data was not encrypted. Experts believe the exposed data may already be circulating on the dark web, posing the risk of fraud and other crimes. The incident highlights the need for strong authentication and proactive security measures in healthcare organizations to protect sensitive data.