China Chongqing hospital summoned over cybersecurity lapses, patient-data risks

( May 16, 2025, 04:34 GMT | Official Statement) -- MLex Summary: A hospital in Chongqing, China, was summoned by the local Internet regulator due to deficiencies in its cybersecurity management, according to a statement from the Chongqing Internet Information Office. The hospital's mobile-application system was found to have cybersecurity vulnerabilities, including horizontal privilege escalation, which could allow attackers to access other users' accounts and associated resources. These vulnerabilities pose a risk of exposing sensitive patient data, the statement said. The regulator instructed the hospital to take responsibility for its cybersecurity, implement remediation measures and conduct regular cybersecurity-training sessions to prevent future incidents.The statement follows:...

Prepare for tomorrow’s regulatory change, today

MLex identifies risk to business wherever it emerges, with specialist reporters across the globe providing exclusive news and deep-dive analysis on the proposals, probes, enforcement actions and rulings that matter to your organization and clients, now and in the longer term.

Know what others in the room don’t, with features including:

Daily newsletters for Antitrust, M&A, Trade, Data Privacy & Security, Technology, AI and more
Custom alerts on specific filters including geographies, industries, topics and companies to suit your practice needs
Predictive analysis from expert journalists across North America, the UK and Europe, Latin America and Asia-Pacific
Curated case files bringing together news, analysis and source documents in a single timeline

Experience MLex today with a 14-day free trial.

Start Free Trial

Already a subscriber? Click here to login

China Chongqing hospital summoned over cybersecurity lapses, patient-data risks

Prepare for tomorrow’s regulatory change, today

Related Sections