PETALING JAYA: In yet another data breach, more than 17,000 patients' personal data have been exposed on the government-linked National Neurology Registry (NNeuR) website due to a scripting error, news portal Free Malaysia Today (FMT) reported.
The portal reported that the data breach exposed among others NRIC numbers, phone numbers and addresses as the registry's database could be accessed.
The report noted that its reporter was led to the tip-off by a source in Canada who had stumbled upon a broken link on the website as he was looking for information on Malaysian neurology patients.
"All the data was downloadable and editable," the report said.
According to NNeuR, the registry started in December 2008 and is supported by the Health Ministry to gather information about stroke and epilepsy in Malaysia.
FMT noted that the registry was developed by Shah Alam-based company Rocket Integration Technology in 2008.
The country has been involved in several data breaches this year, among which includes, the massive data leak of personal details of telecommunications service providers' customers, the data leak of almost 20,000 patient radiological records, and the personal data leak of Malindo Air customers.
The latest incident happened on Oct 17 when bank account details of fuel subsidy recipients were leaked on the Domestic Trade and Consumer Affairs Ministry's newly-launched Petrol Subsidy Programme microsite.