Healthcare startup Lyfebin exposed medical images

Healthcare startup Lyfebin exposed thousands of medical imaging files, such as X-rays, MRI scans, and ultrasounds.

The Los Angeles-based healthcare startup allows doctors and medical staff to store medical images in its “secure environment,” per its website, allowing patients and doctors access from anywhere.

But the files were found stored in an unprotected Amazon Web Services (AWS) storage bucket, without a password, allowing anyone who knew the easy-to-guess web address access to the data.

The files were dated between September 2018 to October 2019.

After we reached out to warn of the security lapse, Lyfebin secured the data.

The storage bucket contained more than 93,000 files — many appeared to be duplicates — containing medical scans. The files were stored in the DICOM format, a common file type used by medical imaging equipment. When opened, DICOM files contain the images from the scan as well as other metadata, such as the patient’s date of birth and the name of the physician.

When asked, Lyfebin wouldn’t say how many individual patients were affected. Instead, an unnamed company spokesperson claimed that the bucket was a “test environment where we use fake accounts and fake patient accounts to test out new features,” but provided no evidence to support the claim. (We asked several times for the spokesperson’s name, but the company representative stopped returning our emails.)

One of the scans found in the exposed storage bucket.

“When we ingest patient information into our servers, we remove all identifying information,” the unnamed spokesperson said. “No patient information has been exposed,” they added.

Many of the files appeared to be anonymized to some degree, though we found evidence of some potentially identifiable information — including physician names and the patient’s gender and date-of-birth, even if the patient’s name had been scrambled from the file’s cover sheet.

One file we examined still contained a name. The file had enough identifiable information to allow us to search for the person using public records. When reached, the person could not recall the specific date of their scan.

When asked to clarify, the unnamed spokesperson repeated the claim that the data contained “fake patient information,” then threatened TechCrunch with legal action.

“If published, our legal team will review your article for any inaccuracies and will sue with the highest extent of the law for any malfeasance by you or TechCrunch,” the spokesperson said.

Lyfebin did not answer our other questions, including how long the bucket was exposed. The company would not say if the company plans to inform customers of the security lapse, nor would it say if it planned to disclose the incident to local authorities per state data breach notification laws.

Read more:

from TechCrunch https://ift.tt/2Sf7GRB
via IFTTT

The Silent Revolution of On-Device AI: Why the Cloud Is No Longer King

Introduction For years, artificial intelligence has meant one thing: the cloud. Whether you’re asking ChatGPT a question, editing a photo with AI tools, or getting recommendations on Netflix — those decisions happen on distant servers, not your device. But that’s changing. Thanks to major advances in silicon, model compression, and memory architecture, AI is quietly migrating from giant data centres to the palm of your hand. Your phone, your laptop, your smartwatch — all are becoming AI engines in their own right. It’s a shift that redefines not just how AI works, but who controls it, how private it is, and what it can do for you. This article explores the rise of on-device AI — how it works, why it matters, and why the cloud’s days as the centre of the AI universe might be numbered. What Is On-Device AI? On-device AI refers to machine learning models that run locally on your smartphone, tablet, laptop, or edge device — without needing constant access to the cloud. In practi...

Apple’s AI Push: Everything We Know About Apple Intelligence So Far

Apple’s WWDC 2025 confirmed what many suspected: Apple is finally making a serious leap into artificial intelligence. Dubbed “Apple Intelligence,” the suite of AI-powered tools, enhancements, and integrations marks the company’s biggest software evolution in a decade. But unlike competitors racing to plug AI into everything, Apple is taking a slower, more deliberate approach — one rooted in privacy, on-device processing, and ecosystem synergy. If you’re wondering what Apple Intelligence actually is, how it works, and what it means for your iPhone, iPad, or Mac, you’re in the right place. This article breaks it all down. What Is Apple Intelligence? Let’s get the terminology clear first. Apple Intelligence isn’t a product — it’s a platform. It’s not just a chatbot. It’s a system-wide integration of generative AI, machine learning, and personal context awareness, embedded across Apple’s OS platforms. Think of it as a foundational AI layer stitched into iOS 18, iPadOS 18, and m...

Max Q: Anomalous

Hello and welcome back to Max Q! Last week wasn’t the most successful for spaceflight missions. We’ll get into that a bit more below. In this issue: First up, a botched launch from Virgin Orbit… …followed by one from ABL Space Systems News from Rocket Lab, World View and more Virgin Orbit’s botched launch highlights shaky financial future After Virgin Orbit’s launch failure last Monday, during which the mission experienced an “anomaly” that prevented the rocket from reaching orbit, I went back over the company’s financials — and things aren’t looking good. For Virgin Orbit, this year has likely been completely turned on its head. The company was aiming for three launches this year, but everything will remain grounded until the cause of the anomaly has been identified and resolved. It’s unclear how long that will take, but likely at least three months. Add this delay to Virgin’s dwindling cash reserves and you have a foundation that’s suddenly much shakier than before. ...

Best Tech News Site

Search This Blog