Nearly 20 million patient records breached – Quest Diagnostics+LabCorp

Nearly 20 million patient records breached – Quest Diagnostics+LabCorp

Yesterday Quest Diagnostics reported that they had almost 11.9 million records affected by malicious software. The breach was reported through their billing collector, American Medical Collection Agency.

Today, to make matters worse, LabCorp has said they were affected by the same breach adding 7.7 million records to the total! This brings the total to almost 20 million patient records being breached.

What is included in the breach?

The breach includes: Social Security Numbers, Lab tests, Diagnostic information, and Insurance information for patients. On top of this over 200,000 payment cards/credit cards were stolen as well. There is potential that there will be additional companies as this is just the start of the breach information. American Medical Collection Agency had many clients they did billing for.

There are no current estimates of what this breach will cost, but the dollar amounts will be in the hundreds of millions, if not billions of dollars.

What do I do if I am a customer of these companies?

If you are a customer of these companies, contact the three major credit bureau’s and put your credit information on a freeze. Due to a breach compromising your information, you should not have to pay for this service. Typically, the Credit Beauru’s charge a nominal fee to freeze accounts. Also, request reports of your credit profiles from all three bureau’s to make sure no credit has been opened under your name.

Keep your eyes peeled for more data to come, and keep monitoring the Quest Diagnostics and LabCorp websites if you feel you may be a part of the breach. The companies should be releasing additional information as time goes by. You also should be given options for credit monitoring and other services due to this breach.

Check all of your credit cards, if you used the AMCA companies payment services. Report any credit card fraud or charges you do not recognize. You can check your credit cards by logging into your accounts online to verify purchases, contacting the number on the back of your credit cards and asking for recent purchases, or by looking at your statements once you receive them in the mail.

How can I prevent this from happening?

Unfortunately, we live in a time when we are at the mercy of all the companies we come in contact with. The only way to 100% prevent this from happening to you is to not use any services, which is nearly possible. Use your best judgment when choosing companies you do business with, but even the big guys ca be hacked/breached if they are not keeping Cyber Security at the top of their priority lists.

The best prevention is to follow the steps from above and keep your information safe. When using credit cards to make purchases, do not use debit cards or other locations that have easy access to your hard-earned cash. Credit card companies will cover the majority of fraudulent charges, as long as they are informed within a reasonable amount of time (usually a few months).

Keep your information safe, and as always follow my blog for more important security information.

Comment below if you have any questions or need additional information. Also, be sure to sign up for my newsletter.

Please follow and like us:

About Don

Don has been in the IT industry for just over 20 years and has been working with Cyber Security for over 10 years. He holds many certifications including CISSP, CEH, and CHFI.

View all posts by Don →

2 Comments on “Nearly 20 million patient records breached – Quest Diagnostics+LabCorp”

  1. I have not used LapCorp recently and I believe the last few times I did I had an FSA card. This card was not connected to any of my accounts. I will be looking into this, though, because I am not sure if my SSN was attached to that card or not.

    It is frightening how vulnerable we are to these hacks and breaches. You would think that companies that handle personal info on a regular basis would pay any price to protect customer’s info. It costs them a whole lot more in the long run.

    Thank you for this heads up. I’ll be passing the info along.

    1. If you used LabCorp services, typically those labs require your SSN for their services and insurance information. Hope everything works out for you with this. Be sure to do some of the items I mentioned above, especially freezing your credit reports.

Leave a Reply

Your email address will not be published. Required fields are marked *