It was the second grave security error at SUS in less than a month (last month, a SUS techie posted a spreadsheet with the system's database keys, logins and passwords to Github, exposing 16m records).
Another leak exposed records in the country's covid tracing data.
The exposed records include the most highly sensitive information: names, dates of birth, full health records, addresses and phone numbers.
Included in the breach are many officials, including the Brazilian dictator Jair Bolsonaro and his junta.
The insecure systems were built by an IT contractor called Zello (formerly MBI Mobi), which has billed the Brazilian state $8.5m since 2017.
The vulnerabilities were discovered by the NGO Open Knowledge Brasil, who sounded the alarm. The breach puts every Brazilian at risk of identity theft and many other forms of cyberattack.
Mamot.fr est une serveur Mastodon francophone, géré par La Quadrature du Net.