數(shù)以百萬計的美國人的私人醫(yī)療圖像可以在網(wǎng)上找到

報告發(fā)現(xiàn)，數(shù)以百萬計的美國人的私人醫(yī)療圖像可以在網(wǎng)上找到

Medical images and health data belonging to millions of Americans — including X-rays and CT scans — are unprotected online and able to be seen by anyone with basic computer expertise, a scathing new report published Tuesday found.

星期二發(fā)表的一份措辭嚴厲的新報告發(fā)現(xiàn)，數(shù)百萬美國人的醫(yī)療圖像和健康數(shù)據(jù)——包括X光和CT掃描——在網(wǎng)上沒有受到保護，任何具備基本計算機專業(yè)知識的人都能看到。

According to ProPublica, which worked in partnership with German broadcaster Bayerischer Rundfunk on the investigation, the records covered over 5 million patients in the United States and millions more worldwide. Someone interested in seeing the data or private images could even use free software programs or a standard web browser to view it.

ProPublica與德國廣播公司Bayerischer Rundfunk合作開展了這項調(diào)查。ProPublica稱，這些記錄覆蓋了美國逾500萬名患者，以及全球數(shù)百萬患者。對查看數(shù)據(jù)或私有圖像感興趣的人甚至可以使用免費軟件程序或標準的web瀏覽器來查看它。

The news outlet found 187 servers — computers used to store and retrieve medical data — in the US that were unprotected by basic security measures. These systems were being used in doctors’ offices, medical imaging centers and mobile X-ray services.

這家新聞機構(gòu)發(fā)現(xiàn)，美國有187臺服務(wù)器沒有受到基本安全措施的保護。這些服務(wù)器是用來存儲和檢索醫(yī)療數(shù)據(jù)的計算機。這些系統(tǒng)被用于醫(yī)生辦公室、醫(yī)療成像中心和移動x光服務(wù)。

“It’s not even hacking. It’s walking into an open door,” Jackie Singh, a cybersecurity researcher and chief executive of the consulting firm Spyglass Security, told ProPublica.

“這都不算黑客。就像是走進開著的大門一樣簡單。”網(wǎng)絡(luò)安全研究員、咨詢公司Spyglass Security的首席執(zhí)行官杰基•辛格(Jackie Singh)對ProPublica表示。

According to the report, some of the medical providers started to lock down their systems after the media organization contacted them.

據(jù)報道，一些醫(yī)療服務(wù)提供者在媒體機構(gòu)聯(lián)系他們之后開始鎖定他們的系統(tǒng)。

The server of US company MobilexUSA displayed the names of over a million patients, all by typing in a simple data query, ProPublica reported. The information apparently included patients’ dates of birth, doctors and procedures.

據(jù)ProPublica報道，美國MobilexUSA公司的服務(wù)器通過輸入一個簡單的數(shù)據(jù)查詢，顯示了100多萬名患者的姓名。這些信息顯然包括患者的出生日期、醫(yī)生和手術(shù)過程。

MobilexUSA, which takes mobile X-rays and provides imaging services to hospitals, nursing homes and hospice agencies, reportedly upped its security last week.

MobilexUSA為醫(yī)院、療養(yǎng)院和臨終關(guān)懷機構(gòu)提供移動x光和成像服務(wù)。據(jù)報道，該公司上周加強了安全措施。