205,000 patient records exposed on misconfigured FTP server

MedEvolve, a practice management software vendor, left its FTP server open to the public without the need for a login. Arkansas-based MedEvolve misconfigured its FTP server and exposed the data of 205,000 patients from two separate providers, the practice management software vendor confirmed to Healthcare IT News.First discovered by DataBreaches.net, the FTP server was configured to allow anonymous login, did not require login credentials and failed to display a banner that would direct users to keep out of patient files.While...