數(shù)以百萬計的美國人的私人醫(yī)療圖像可以在網(wǎng)上找到

報告發(fā)現(xiàn)，數(shù)以百萬計的美國人的私人醫(yī)療圖像可以在網(wǎng)上找到

Medical images and health data belonging to millions of Americans — including X-rays and CT scans — are unprotected online and able to be seen by anyone with basic computer expertise, a scathing new report published Tuesday found.

星期二發(fā)表的一份措辭嚴厲的新報告發(fā)現(xiàn)，數(shù)百萬美國人的醫(yī)療圖像和健康數(shù)據(jù)——包括X光和CT掃描——在網(wǎng)上沒有受到保護，任何具備基本計算機專業(yè)知識的人都能看到。

According to ProPublica, which worked in partnership with German broadcaster Bayerischer Rundfunk on the investigation, the records covered over 5 million patients in the United States and millions more worldwide. Someone interested in seeing the data or private images could even use free software programs or a standard web browser to view it.

ProPublica與德國廣播公司Bayerischer Rundfunk合作開展了這項調(diào)查。ProPublica稱，這些記錄覆蓋了美國逾500萬名患者，以及全球數(shù)百萬患者。對查看數(shù)據(jù)或私有圖像感興趣的人甚至可以使用免費軟件程序或標準的web瀏覽器來查看它。

The news outlet found 187 servers — computers used to store and retrieve medical data — in the US that were unprotected by basic security measures. These systems were being used in doctors’ offices, medical imaging centers and mobile X-ray services.

這家新聞機構發(fā)現(xiàn)，美國有187臺服務器沒有受到基本安全措施的保護。這些服務器是用來存儲和檢索醫(yī)療數(shù)據(jù)的計算機。這些系統(tǒng)被用于醫(yī)生辦公室、醫(yī)療成像中心和移動x光服務。

“It’s not even hacking. It’s walking into an open door,” Jackie Singh, a cybersecurity researcher and chief executive of the consulting firm Spyglass Security, told ProPublica.

“這都不算黑客。就像是走進開著的大門一樣簡單。”網(wǎng)絡安全研究員、咨詢公司Spyglass Security的首席執(zhí)行官杰基•辛格(Jackie Singh)對ProPublica表示。

According to the report, some of the medical providers started to lock down their systems after the media organization contacted them.

據(jù)報道，一些醫(yī)療服務提供者在媒體機構聯(lián)系他們之后開始鎖定他們的系統(tǒng)。

The server of US company MobilexUSA displayed the names of over a million patients, all by typing in a simple data query, ProPublica reported. The information apparently included patients’ dates of birth, doctors and procedures.

據(jù)ProPublica報道，美國MobilexUSA公司的服務器通過輸入一個簡單的數(shù)據(jù)查詢，顯示了100多萬名患者的姓名。這些信息顯然包括患者的出生日期、醫(yī)生和手術過程。

MobilexUSA, which takes mobile X-rays and provides imaging services to hospitals, nursing homes and hospice agencies, reportedly upped its security last week.

MobilexUSA為醫(yī)院、療養(yǎng)院和臨終關懷機構提供移動x光和成像服務。據(jù)報道，該公司上周加強了安全措施。