Category: pentest

A while ago I was pentesting a known healthcare platform. They allow you to login, access your medical records, download your studies, get appointments with different doctors, and so on, all managed from a profile in their systems. In one of the functionalities they offered, there was the possibility to send your medical studies via…