HQ/EMEAFind out how we can help your business
Kaiser Permanente, one of the major healthcare providers in the US, has revealed a security incident that could affect about 13.4 million individuals across the country.
Based on reports, Kaiser Permanente revealed that the sensitive data of approximately 13.4 million current and former members and patients has been inadvertently leaked to third-party trackers attached to its websites and mobile applications.
These trackers, associated with tech giants like Google, Microsoft, Bing, and Twitter, were found to transmit personal information whenever individuals accessed Kaiser Permanente’s digital platforms.
A Kaiser Permanente representative confirmed that the impacted data could include various credentials.
A Kaiser Permanente spokesperson clarified that the compromised data might contain IP addresses, usernames, navigation patterns within the site or app, and search queries made within the health encyclopedia.
Such data obtained by online trackers is shared with marketers, advertisers, and data brokers, raising concerns about privacy and security.
The institution assures its users that the leaked information does not include sensitive identifiers such as passwords, Social Security Numbers (SSNs), or financial details. Still, they immediately addressed the incident after discovering the trackers.
Reports stated that the organisation promptly removed them following an internal investigation. Additionally, the entity has fortified its security measures to mitigate the threat of similar incidents occurring in the future.
Furthermore, this healthcare institution plans to notify all individuals who accessed its websites or mobile apps during the affected period, ensuring transparency and awareness among its users.
This attack is not the first instance where Kaiser Permanente has suffered a security breach. A couple of years ago, the organisation disclosed a similar incident where the health information of nearly 70,000 individuals was compromised due to unauthorised access to an employee’s email account.
Information such as full names, medical records, and lab test results were among the data exposed during that breach.
Healthcare providers like Kaiser Permanente must remain vigilant in protecting patient information. The recent breach shows the critical importance of competent security measures and proactive monitoring to preserve the safekeeping and confidentiality of sensitive medical information.
