Indiana 通知するing 750K after COVID-19 tracing data 接近d
INDIANAPOLIS (AP) - Indiana health 公式の/役人s said Tuesday they are 通知するing nearly 750,000 明言する/公表する 居住(者)s that a cybersecurity company "improperly 接近d" their personal data from the 明言する/公表する's online COVID-19 接触する tracing 調査する - a description the company 論争d as a "falsehood."
The Indiana Department of Health said the 明言する/公表する was 通知するd July 2 that a company 伸び(る)d "unauthorized 接近" to data, 含むing 指名するs, 演説(する)/住所s, dates of birth, emails, and data on gender, ethnicity and race.
The nearly 750,000 people whose data was 接近d 代表する all of the 明言する/公表する's 関係者s in its online COVID-19 接触する tracing 調査する, said 機関 spokeswoman Megan Wade-Taxter.
明言する/公表する Health Commissioner Kris Box said the 明言する/公表する health department does not collect Social 安全 (警察などへの)密告,告訴(状) for its COVID-19 接触する tracing program, and no 医療の (警察などへの)密告,告訴(状) was 得るd.
"We believe the 危険 to Hoosiers whose (警察などへの)密告,告訴(状) was 接近d is low," Box said in a news 解放(する).
明言する/公表する 公式の/役人s did not identify the company 伴う/関わるd in their news 解放(する), but Wade-Taxter said the company was UpGuard, a cybersecurity company based in Mountain 見解(をとる), California.
UpGuard spokeswoman Kelly Rethmeyer said in 声明 Tuesday that Indiana's news 解放(する) 述べるing the data 接近 出来事/事件 含むs "many falsehoods."
"For one, our company did not `improperly 接近' the data. The data was left 公然と accessible on the internet. This is known as a data 漏れる," she said. "It was not unauthorized because the data was configured to 許す 接近 to 匿名の/不明の 使用者s and we 接近d it as an 匿名の/不明の 使用者."
Rethmeyer 追加するd that UpGuard "discovered this 漏れるd (警察などへの)密告,告訴(状) in the course of our 研究 and 通知するd the Indiana Department of Health since they were unaware of the 漏れる."
She 追加するd that the company "補佐官d in 安全な・保証するing the (警察などへの)密告,告訴(状), in turn 確実にするing that it would no longer be 利用できる to anyone with malicious 意図."
A message 捜し出すing comment on UpGuard's 声明 was left Tuesday afternoon with Indiana's health department.
Indiana 公式の/役人s said in their news 解放(する) that UpGuard 調印するd a "証明書 of 破壊" last week with the 明言する/公表する to 確認する that it had destroyed the data and not 解放(する)d it to any other (独立の)存在.
Rethmeyer said that UpGuard has 削除するd "all the data in our 所有/入手."
The Indiana Office of 科学(工学)技術 and the 明言する/公表する health department 追加するd that they have 訂正するd a "ソフトウェア configuration 問題/発行する" 伴う/関わるd in the data 接近 出来事/事件. Both departments also requested the 接近d 記録,記録的な/記録するs, and those were returned Aug. 4, によれば the news 解放(する).
"We have 訂正するd the ソフトウェア configuration and will 積極性 follow up to 確実にする no 記録,記録的な/記録するs were transferred," said Tracy Barnes, Indiana´s 長,指導者 (警察などへの)密告,告訴(状) officer.
Rethmeyer questioned the 明言する/公表する's description of the ソフトウェア 問題/発行する, 説 that "the `Configuration 問題/発行する' is that every 記録,記録的な/記録する was made to be 公然と accessible."
Indiana's health department said it will send letters to 影響する/感情d Hoosiers 通知するing them that the 明言する/公表する will 供給する one year of 解放する/自由な credit 監視するing and is partnering with Experian to open a call 中心 to answer questions from those 影響する/感情d.
The Indiana Office of 科学(工学)技術 said it will also continue 正規の/正選手 ざっと目を通すs to 確実にする that the (警察などへの)密告,告訴(状) was not transferred to another party.
