The flaw, found by TechCrunch and reported to LabCorp, exposed at least 10,000 patient documents via an unprotected URL that was cached by Google and could be seen through search engines.
LabCorp spokesperson Donald Von Hogan declined to confirm that the documents “are in fact LabCorp information” but said, “I can confirm that we have terminated access to the system.”