«
»

Thousands of Health Tech Company Records Exposed Online

A significant data exposure involving ESHYFT, a New Jersey-based health tech company, was recently uncovered by cybersecurity researcher Jeremiah Fowler and reported to Website Planet.

What happened:
non-password-protected database containing over 86,000 records totaling 108.8 GB in size was exposed. The records include personally identifiable information (PII) such as scans of identification documents like driver’s licenses and social security cards, salary details, work history and more.

Why it matters:
This exposure presents serious risks, such as identity theft, employment fraud, financial fraud, or targeted phishing campaigns. These risks could impact healthcare professionals as well as the facilities that employ them.

You can find a report on this here: https://www.websiteplanet.com/news/eshyft-report-breach/

This entry was posted on March 11, 2025 at 1:56 pm and is filed under Commentary with tags . You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “Thousands of Health Tech Company Records Exposed Online”

  1. PII Exposed Online in Healthcare Marketplace Connecting Facilities and Nurses Data Leak | The IT Nerd Says:
    March 14, 2025 at 8:42 am

    […] Cybersecurity researcher Jeremiah Fowler discovered a non-password-protected database that contained over 86,000 records belonging to ESHYFT — a New-Jersey-based HealthTech company that operates in 29 states. This database contained 86,341 records including PII of users. A discovery that I previously covered here. […]

    Reply

Leave a Reply

Discover more from The IT Nerd

Subscribe now to keep reading and get access to the full archive.

Continue reading