Hundreds of thousands of documents with plastic surgery patients’ personal information and photos were exposed online by an improperly secured Amazon Web Services (AWS) S3 bucket. The bucket was used by NextMotion to store roughly 900,000 files with highly sensitive patient images and videos, as well as plastic surgery, dermatological treatments, and consultation documents. NextMotion is a French plastic surgery tech firm that provides imaging and patient management services that help 170 plastic surgery clinics from 35 countries document, digitize and market their practices.
Source: https://www.bleepingcomputer.com/news/security/plastic-surgery-patient-photos-info-exposed-by-leaky-database/