ADVERTISEMENT

Third-party leak exposes Stanford Health Care staff details, passwords

Names, payroll data, hashed passwords, and thousands of other sensitive records belonging to Stanford Health Care’s staff were exposed after a third-party contractor, Perfectshift, left an unprotected database accessible to the public.

Perfectshit leaks sensitive data
Vilius Petkauskas
Vilius Petkauskas Deputy Editor
Nov 5, 2025 Updated: 5 November 2025 2 min read
jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.

What data was involved in the leak?

  • Payroll data
  • Full names
  • Work email addresses
  • Hashed passwords
  • Browser agents
  • IP addresses
  • Session cookies
  • Authorization tokens
ADVERTISEMENT
Data sample
Sample of the leaked data. Image from Cybernews.

Next steps

  • The database is sensitive and should not be publicly accessible, as it contains PII and financial data of Stanford and Hillsboro Medical Centers’ employees
  • The owner should ensure that the database is no longer publicly accessible by enabling built-in authentication and authorisation features, employing IP whitelisting
  • Leaked credentials should be reset, and affected individuals and organizations informed

  • Leak discovered: August 19th, 2025
  • Initial disclosure: August 21st, 2025
  • CERT contacted: September 3rd, 2025
  • Leak closed: October 30th, 2025

ADVERTISEMENT