A database containing sensitive information belonging to 30,000 people linked to the medical and recreational marijuana industry has been compromised, ZDNet reports. On Dec. 24, 2019, vpnMentor’s research team identified an unsecured Amazon S3 bucket owned by THSuite, a point-of-sale system used in the marijuana industry. Patient and staff names, birthdates, addresses, medical ID numbers and purchase details were exposed. There could be consequences for the breach under the Health Insurance Portability and Accountability Act. “Medical patients have a legal right to keep their medical information private,” the researchers said. “Those whose personal information was leaked may face negative consequences both personally and professionally.”
If you want to comment on this post, you need to login.