The FBI issued Private Industry Notification 170322-001 to smaller heath care offices about how cybercriminals are using an old method involving an old FTP server to gain access to personally identifiable information (PII) about patients. The warning focused on the file transfer protocol (FTP), an early way to share files remotely over the internet. Anonymous FTP, as it is called, does not require any authentication before granting access to the files on the system. The FBI cited 2015 research from the University of Michigan, which stated that 1 million FTP servers have been configured to allow.”]
Source: https://securityintelligence.com/news/fbi-warns-about-ftp-server-vulnerability/