All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

38 Zero-Day Vulnerabilities Found in OpenEMR Healthcare Software Used by 100,000+ Providers

By

Missing or incorrect authorization

1mo ago· 9 min readenNews
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

Master baker tier. Every paragraph earns its place on the tray.

Score100TypenewsSentimentnegative

Summary

AISLE (Applied Independent Security Lab for Exploitation) discovered 38 zero-day vulnerabilities in OpenEMR, a widely used open-source electronic health record platform serving over 100,000 medical providers. Three of the vulnerabilities are classified as critical. The article discusses the widening security gap in healthcare digitization, where AI-assisted diagnostics and telemedicine are expanding rapidly but security practices lag behind. It highlights the shift from reactive disclosure to proactive prevention in healthcare software security.

Key quotes

· 5 pulled
Healthcare is digitizing faster than it is being secured.
AI-assisted diagnostics, telemedicine, and automated billing are expanding access to care at unprecedented speed, but the security practices protecting these systems have not kept up.
Attackers are increasingly using AI to find vulnerabilities faster than ever.
The result is a widening gap between what healthcare software can do and how well it is defended.
OpenEMR sits squarely in that gap.
Snippet from the RSS feed
38 zero-day security vulnerabilities, three critical, and the shift from disclosure to prevention in healthcare software

You might also wanna read

Change Healthcare Cyberattack Exposes Data of 190 Million People in Largest U.S. Health Data Breach

The Change Healthcare cyberattack, first detected in February 2024, has become the largest exposure of personal health data in U.S. history,

morningoverview.com·3mo ago

GE HealthCare Unveils AI and Radiopharmaceutical Innovations to Expand Nuclear Medicine Access at SNMMI 2026

GE HealthCare is showcasing new AI-enabled workflows, radiopharmaceuticals, and imaging innovations at the 2026 SNMMI Annual Meeting to help

stocktitan.net·1h ago

New FROST Technique Enables Browser-Based SSD Tracking of Website Visitors

A new browser-based tracking technique called FROST (Fingerprinting Remotely Using OPFS-based SSD Timing) allows websites to spy on visitors

wired.com·1h ago

Edmunds Data Breach: 178,000 Records Exposed by ShinyHunters Hacking Group

In January 2026, the automotive research and car-shopping platform Edmunds was breached by the ShinyHunters hacking group. The compromised d

haveibeenpwned.com·2h ago

Blockchain offers a path to patient-controlled wellness data beyond traditional EHR systems

The article discusses how traditional electronic health record (EHR) systems prioritize billing and institutional workflows over patient con

americaoutloud.news·3h ago

Project Glasswing: AI-assisted vulnerability detection finds over 10,000 critical software flaws

Project Glasswing is a collaborative effort launched to secure critical software against potential threats from increasingly capable AI mode

anthropic.com·3h ago