Tuesday 11 February 2020, Poradnik bezpieczeństwa

Client data leak of pharmacies supplying medicinal marijuana

Lost24

85,000 files, including 30,000 sensitive records of pharmacy’s client information, leaked from an unsecure Amazon S3 server of the THSuite platform. THSuite is responsible for the supply of pharmacies offering legal access to medicinal marijuana.


THSuite is an international records system for patients using legal cannabis.
In this case, there was no need for a hack to take place, since as a result of the mistake the data was made publicly available.


According to Dziennik Internautów data belongs to US patients, included in the leak were such details as phone numbers, e-mail addresses, dates of birth and customer’s insurance details.
The server was shut down in mid-January.