Millions of coronavirus patients have data leaked online

News
By published

Leak came from a hospital employee as opposed to hackers

Coronavirus
(Image credit: Folding@Home / Alissa Eckert, MS; Dan Higgins, MAM)

Usually data leaks are the work of hackers but this was not the case when 16m Brazilian Covid-19 patients recently had their personal and health information leaked online.

Against all protocols and policies, a Brazilian hospital employee decided to upload a spreadsheet with usernames, passwords and access keys to sensitive government systems on the developer website GitHub.

Of the systems exposed in the spreadsheet, there were two government databases called E-SUS-VE and Sivep-Gripe that are used to store data on Covid-19 patients. 

While E-SUS-VE is used for recording patients with mild symptoms, Sivep-Gripe is used to track those who have been hospitalized as a result of the virus. However, both databases contained sensitive details including patient names, addresses, ID information and healthcare records.

Leaked patient data

The recent data leak came to light when a GitHub user discovered the spreadsheet on the personal account of an Albert Einstein Hospital employee on the site. This user then notified the Brazilian newspaper Estadao which analyzed the data and then went on to notify both the the hospital in the city of Sao Paolo and the Brazilian Ministry of Health.

According to a report by Estadao, data from Brazilians across 27 states was found in the two databases including the personal healthcare records of the country's president Jair Bolsonaro, his family, seven government ministers and 17 Brazilian governors.

The leaked spreadsheet was then taken down from GitHub while government officials changed passwords and revoked access keys so that no one else could retrieve the sensitive Covid-19 data.

At this time, it is still unknown as to why the hospital employee decided to post the spreadsheet on Github in the first place. Thankfully though, both databases have now been properly secured.

Via ZDNet

Anthony Spadafora
Anthony Spadafora

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home. 

Latest in Security
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Lock on Laptop Screen
Medusa ransomware is able to disable anti-malware tools, so be on your guard
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Coinbase targeted after recent Github attacks
hacker.jpeg
Key trusted Microsoft platform exploited to enable malware, experts warn
IBM office logo
IBM to provide platform for flagship cyber skills programme for girls
Oracle
Oracle denies data breach after hacker claims to hold six million records
Latest in News
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Cassian Andor looking nervously over his shoulder in Andor season 2
New Andor season 2 trailer has got Star Wars fans asking the same question – and it includes an ominous call back to Rogue One's official teaser
Ncuti Gatwa as The Fifteenth Doctor in Doctor Who
Disney+ drops new trailer for Doctor Who season 2 that promises an epic adventure across time and space
23andMe
23andMe is bankrupt and about to sell your DNA, here's how to stop that from happening
A phone showing a ChatGPT app error message
ChatGPT was down for many – here's what happened
AirPods Max with USB-C in every color
Apple's AirPods Max with USB-C will get lossless audio in April, but you'll need to go wired
More about security
Lock on Laptop Screen

Medusa ransomware is able to disable anti-malware tools, so be on your guard
hacker.jpeg

Key trusted Microsoft platform exploited to enable malware, experts warn
Microsoft

"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
See more latest
Most Popular
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Ncuti Gatwa as The Fifteenth Doctor in Doctor Who
Disney+ drops new trailer for Doctor Who season 2 that promises an epic adventure across time and space
Cassian Andor looking nervously over his shoulder in Andor season 2
New Andor season 2 trailer has got Star Wars fans asking the same question – and it includes an ominous call back to Rogue One's official teaser
23andMe
23andMe is bankrupt and about to sell your DNA, here's how to stop that from happening
Lock on Laptop Screen
Medusa ransomware is able to disable anti-malware tools, so be on your guard
hacker.jpeg
Key trusted Microsoft platform exploited to enable malware, experts warn
A screenshot from Indiana Jones and the Great Circle showing Indiana Jones
Indiana Jones and the Great Circle finally gets PS5 release date and I can't wait to don the fedora and crack the whip
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Tuesday, March 25 (game #387)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Tuesday, March 25 (game #653)
Quordle on a smartphone held in a hand
Quordle hints and answers for Tuesday, March 25 (game #1156)