Internet Security

Thousands of medical injury claim records exposed by ad agency

An internet advertising company specializing in helping law firms sign up potential clients has exposed close to 150,000 records from a database that was left unsecured. The database contained submissions as part of a lead-generation effort by X Social Media, a Florida-based ad firm that largely uses Facebook to advertise various campaigns for its law…


An internet advertising company specializing in helping law firms sign up potential clients has exposed close to 150,000 records from a database that was left unsecured.

The database contained submissions as part of a lead-generation effort by X Social Media, a Florida-based ad firm that largely uses Facebook to advertise various campaigns for its law firm customers. Law firms pay the ad company to set up individual websites that aim to sign up victims from specific categories of harm and injuries — from medical implants, malpractice, sexual abuse and more — who submit their information in the hope of receiving legal relief.

But the database was left unprotected and without a password, allowing anyone to look inside.

Security researchers Noam Rotem and Ran Locar found the database and reported it to the company, which pulled the database offline. The researchers also shared their discovery exclusively with TechCrunch and posted their findings on vpnMentor.

The database contained names, addresses, phone numbers, the date and time of a person’s submission and the circumstances and explanation of their accident, injury or illness. Often this included personal health information, sensitive medica

Read More

Be the first to write a comment.

Leave a Reply

Internet Security

Many popular Twitter accounts simultaneously hacked to spread cryptocurrency scam

A number of high-profile Twitter accounts were simultaneously hacked on Wednesday by attackers who used the accounts some with millions of followers to spread a cryptocurrency scam. @bitcoin, @rippl…

A number of high-profile Twitter accounts were simultaneously hacked on Wednesday by attackers who used the accounts some with millions of followers to spread a cryptocurrency scam.
@bitcoin, @rippl…
Read More

Continue Reading
Internet Security

Whether or not the Trump administration bans TikTok, it’s already helping Facebook

On Tuesday, U.S. Secretary of State Mike Pompeo said that the U.S. is “looking at” banning Chinese social media apps, including the Chinese-owned company TikTok, comparing it to other Chinese compani…

On Tuesday, U.S. Secretary of State Mike Pompeo said that the U.S. is “looking at” banning Chinese social media apps, including the Chinese-owned company TikTok, comparing it to other Chinese compani…
Read More

Continue Reading
Internet Security

Cloudflare CEO pledges to double 2020 internship class

Internet security company Cloudflare has pledged to double its Summer 2020 internship class, and make the entire program remote if necessary, in response to cancellations of internships programs across the country due to COVID-19. Yelp, Funding Circle, StubH…

Internet security company Cloudflare has pledged to double its Summer 2020 internship class, and make the entire program remote if necessary, in response to cancellations of internships programs across the country due to COVID-19.
Yelp, Funding Circle, StubH…
Read More

Continue Reading
Internet Security

DataGuard, which provides GDPR and privacy compliance-as-a-service, raises $20M

Watchdogs have started to raise the issue that new working practices and online activity necessitated by the spread of the coronavirus pandemic are creating new sets of privacy, security and data protection challenges. Today a startup is announcing a growth r…

Watchdogs have started to raise the issue that new working practices and online activity necessitated by the spread of the coronavirus pandemic are creating new sets of privacy, security and data protection challenges. Today a startup is announcing a growth r…
Read More

Continue Reading