IntSights Cyber Intelligence Finds an Estimated 30% of Healthcare Databases Are Exposed Online

Global Threat Intelligence Firm Reveals Significant Exposure of Healthcare Databases in New Research Report

NEW YORK, December 5, 2018

IntSights Cyber Intelligence, the leading provider of surface, deep and dark web cyber threat intelligence and digital risk protection solutions, announced today the release of the company's latest research report, Chronic [Cyber] Pain: Exposed & Misconfigured Databases in the Healthcare industry. The report explores a key area of the healthcare attack surface, which is often the easiest to avoid - exposed databases.

Using simple search techniques and a basic understanding of healthcare technology solutions, IntSights researchers found that an estimated 30% of healthcare databases are openly exposed online. It's not only old or outdated databases that get breached, but also newly established platforms that are vulnerable due to misconfiguration and/or open access.

"Stepping into the shoes of an everyday hacker, our threat research team used a combination of openly available tools, knowledge of default port configurations and educated guessing to identify exposed healthcare databases and, ultimately, uncover over 1.5 million healthcare records without using any intrusive methods," said Ariel Ainhoren, Threat Researcher, IntSights. "The rate at which we could discover openly accessible PII and medical data is alarming, and should serve as a wakeup call to the healthcare industry that some of their most basic processes are riddled with vulnerability, often due to simple error, oversight and/or misconfiguration."

The research report also provides specific examples of exposed databases using a variety of search methods, and provides recommendations for how healthcare organizations can more effectively secure their data.

The full research report is available for download here:

About IntSights:

IntSights is redefining cyber security with the industry's first and only enterprise threat management platform that transforms tailored threat intelligence into automated security operations. Our groundbreaking data-mining algorithms and unique cyber reconnaissance capabilities continuously monitor an enterprise's external digital profile across the surface, deep and dark web, categorize and analyze tens of thousands of threats, and automate the risk remediation lifecycle -- streamlining workflows, maximizing resources and securing business operations. This has made IntSights' one of the fastest growing cybersecurity companies in the world. IntSights' has offices in Amsterdam, Boston, Singapore, Tokyo, New York, Dallas and Tel Aviv. To learn more, visit:

Follow us on Twitter:@IntSights 
Visit us on LinkedIn:

From Blog

feature image Banking Credit Card Threat Intelligence Financial Services Fraud
Leveraging External Threat Intelligence to Reduce the Impact of Cyber Fraud

Financial cyber fraud is on the rise around the world. Earlier this year, IntSights recorded a 212 percent year-over-year increase in credit card...

Read More
feature image Indicators of Attack 3rd Party Risk Gaming & Leisure
6 Ways Hotels Can Protect Themselves from Cyberattacks

The hospitality industry – including hotels, resorts, casinos, and other travel and leisure businesses – is increasingly under siege by...

Read More
feature image Phishing
Phishing Beyond the Perimeter: How Cybercriminals Weaponize Domain Squatting

Phishing is the oldest trick in the cybercriminal playbook, dating back to the early days of the internet. But it remains effective, even in today’s...

Read More
white logo.png
Interested in learning more?
Request a Demo