Saturday, January 23, 09:19
Home security Cannabis users' personal data has been exposed online

Cannabis users' personal data has been exposed online

hempResearchers security by VPNMentor they found one exposed database containing data on 30.000 people. The common feature of all these people is the use of hemp (or marijuana) for medical and non-medical reasons.

The research team, led by Noam Rotem and Ran Locar, discovered an Amazon S3 bucket at Internet without any protection. Anyone could have access.

The database was found on 24 December 2019, while the company made a web scan as part of her web scanning project. The database is owned by the company THSuite, a Point-Of-Sale (POS) system used in the cannabis industry in the United States.

Medical marijuana is now considered legal in some states of America.

According to VPNMentor researchers, the exposed THSuite database contained Identity belonging to 30.000 cannabis users. In total, more than 85.000 were exposed archives.

The information Exposed are: full names of patients and staff members, dates of birth, telephone numbers, home addresses, email addresses, medical ID numbers, cannabis used, price, quantity and receipts.

The researchers entered the database and collected some random samples of cannabis distributors in Maryland, Ohio, and Colorado. Their goal was to understand the magnitude of the problem.

The samples they selected included n Amedicanna Dispensary as well as customer IDs and other information related to company inventory and sales. Another company found in the database was Bloom Medicinals, which also included customer data as well as information on hemp product listings, suppliers, price, monthly sales, discounts, rebates and taxes paid. Her exposed information Colorado Grow Company related to monthly sales, discounts, taxes, employee names and inventory lists.

This particular data leak is essential a infringement medical data. Therefore, it is likely that there will be consequences under the American Health and Safety Act (HIPPA) passed in 1996. Under that law, medical information for patients should be protected. Anyone who violates HIPPA can receive fine of millions of dollars or even get into prison.

"Patients have a legal right to keep their medical information private," say the researchers.

Two days after the database was discovered with data of cannabis users, VPNMentor contacted THSuite but received no response. So she contacted Amazon AWS on January 7, 2020. A week later, access the database was not possible.


Please enter your comment!
Please enter your name here

Absent Mia
Absent Mia
Being your self, in a world that constantly tries to change you, is your greatest achievement


Intel CPUs Review: Core i7-10700 vs Core i7-10700K!

Over the years, the Intel series of processors (CPUs) introduced the series of overclocking models "K" and more recently the series ...

The DeLorean can return as an electric car

The DMC DeLorean has been out of production for almost 40 years, but it looks like the iconic vehicle will return as an electric car.

Windows RDP servers are used to support DDoS

Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to reinforce the unwanted ...

SEPA: He refused to pay a ransom and thousands of files were leaked

Thousands of stolen files of the Scottish Environmental Protection Agency (SEPA) have been published by hackers, after the organization refused to pay the ransom ...

Fines at Valve, Capcom and Zenimax for geo-exclusion of games

Following a European Commission investigation, a group of video game publishers was fined € 7,8 million following allegations of geo-exclusion practices. In...

Bitcoin helps the middle class survive the pandemic

Regulators still imply that Bitcoin is just a tool for criminals, but it seems that for the middle class ...

Lightworks 2021.1 for Linux, Mac and Windows has been released

Lightworks Professional Multi-Platform Video Editing Software received the first major update to Lightworks 2021.1 for Windows, Linux and Mac.

Netflix: Watch the 9 best Anime movies of all time

One of the good things about the pandemic was that many people were introduced to the anime world. And the issue with anime is ...

CHwapi: Windows BitLocker "hit" the Belgian hospital!

The CHwapi hospital in Belgium was attacked by a cyber attack on January 17, with hackers claiming to have encrypted 40 servers and 100 ...

CPU / GPU Lotteries: Newegg sells the few on the market

Hardware shortages are not uncommon, but the pandemic has worsened the situation. The whole planet is closed to ...