A security researcher says a misconfigured, non-password-protected database of a healthcare staffing company potentially exposed on the internet the personal information in about 170,000 medical worker records. The staffing firm, however, disputes the details of what was allegedly contained in the database.
In a report issued Wednesday, researcher Jeremiah Fowler of security firm Security Discovery says he and his research team recently discovered a non-password-protected database belonging to Tampa-based healthcare staffing firm Gale Healthcare Solutions.
Fowler alleges the database contained more than 170,000 records of nurses, caregivers and other medical workers, including employee profiles featuring names, phone numbers, email addresses and home addresses, as well as links to images of the employees, files that indicated credentials, and tax documents, such as Social Security numbers.
