Govt working to determine source of patient data leak

PETALING JAYA: The government says it is working to identify the source of a data leak involving the patient records of some 20,000 Malaysians discovered by a security firm based in Germany.

The health ministry in a statement today said it had organised a special meeting with the Communications and Multimedia Commission and the National Cyber Security Agency.

It said they had discussed immediate steps to address the problem and avoid any future leaks, including mapping data exposure risks at all healthcare facilities and reviewing exposure risks at all hospitals using the Picture Archiving and Communication Systems also known as PAC.

It added that the leak could have occurred at any healthcare facility including private hospitals and university medical centres.

Channel NewsAsia reported yesterday that 19,922 patient data records had been made publicly accessible from three archive systems, along with 1.2 million images associated with these records.

The leak, revealed in an investigation by Greenbone Networks, was due to a data glitch which saw the same problem occur in at least 52 countries including Australia, China, Japan, the UK, France, the US, Russia and Brazil.

Personal data in public domain reportedly includes full names, dates of birth, dates of medical examinations, X-ray images, CT and MRI scans