Security News > 2020 > March > Walgreens Mobile App Exposed Health-Related Messages

The mobile app of U.S. pharmaceutical retailer Walgreens inadvertently disclosed personal messages to other customers due to an internal application error, revealing some health-related information.

Walgreens filed a copy of the data breach notification it has sent to affected customers with California's Office of the Attorney General, which makes those notifications public.

"As part of our investigation, Walgreens determined that certain messages containing limited health-related information were involved in this incident for a small percentage of impacted customers," according to the notice.

As of Monday, the Walgreens incident was not posted on the U.S. of Department of Health and Human Service's HIPAA Breach Reporting Tool website, which lists health data breaches impacting 500 or more individuals.

"Our investigation determined that an internal application error allowed certain personal messages from Walgreens that are stored in a database to be viewable by other customers using the Walgreens mobile app," the company says.

News URL

https://www.inforisktoday.com/walgreens-mobile-app-exposed-health-related-messages-a-13813