A report reveals LifeLabs, a Canadian medical testing company, failed to adequately protect customer data in a 2019 ransomware attack. The breach exposed the personal health information of 15 million and personally identifiable information of 8.6 million Canadians. The findings highlight critical shortcomings in LifeLabs’ cybersecurity practices and underscore the need for robust data protection measures in the healthcare sector. The four year delay in releasing the report is also concerning.