Shares of Dr Lal Pathlabs climbed 4.6 percent to Rs 2,150 apiece on Monday after the company clarified that patients' data breach was a result of misconfiguration in one of the company's minor web applications where temporary records were stored for operational purposes.
"The Company wishes to clarify regarding an incident concerning the disclosure of company's data publicly on the internet, as reported by certain media articles. There was a misconfiguration in one of our minor web application where temporary records were stored for operational purposes, and took place at a facility managed by a third party. It involved less than 0.5% of our records and has been successfully resolved since. We have informed the relevant authorities about the same and are investigating this incidence," the company said in its filing.
A report from TechCrunch last week said that the country's largest testing lab exposed personal data of millions of patients in the public domain, making it accessible to everyone.
According to the report, Dr Lal PathLabs was storing hundreds of large spreadsheets that included sensitive patient data in a storage bucket hosted on Amazon Web Services (AWS), without a password on the server.
The leaked data included sensitive information of patients including booking details, names, gender, addresses, phone numbers, email addresses, digital signature, payment details and doctor details along with the type of test taken, it said.