Quest Diagnostics says personal data of almost 12 million customers has been breached
Source: thehill.com
Blood testing group Quest Diagnostics announced Monday that the personal information of 11.9 million patients has been breached, including Social Security numbers, financial information and medical data.
The company said in a statement that an unauthorized user gained access to the American Medical Collection Agency (AMCA) system, a billing collection service provider for Quest.
The breach also affected data from Optum360, a Quest contractor that also uses the AMCAs billing services. Quest said it and Optum360 are working with forensic experts to investigate the matter.
Quest noted in its official statement on the breach that it had not yet received complete information on the details of the breach from the AMCA, such as which customers were impacted, and that it has also not been able to verify that the breach took place. The company said that it does not believe that laboratory test results were accessed.
Read more: https://thehill.com/policy/cybersecurity/446623-quest-diagnostics-says-personal-data-of-almost-12-million-customers-has#.XPU39Ch7hwE.twitter
Turbineguy
(37,345 posts)I'm concerned that scallywags will use my blood test info to open credit accounts!
Hassler
(3,379 posts)Who haven't been hacked due to their indifference to anything beyond maximizing profits?
Farmer-Rick
(10,187 posts)They've gone and lost your information. They make a profit off your information and you would think that protecting it would be their number one priority. But if you thought that, you would be wrong.
iscooterliberally
(2,860 posts)Maxheader
(4,373 posts)Common, tell us..How much did you get to provide the opening?
Losers...
Hekate
(90,714 posts)Glimmer of Hope
(5,823 posts)dhill926
(16,347 posts)on the good side, my cholesterol is fine...
WhiteTara
(29,718 posts)have medical collections.
gained access to the American Medical Collection Agency (AMCA) system, a billing collection service provider for Quest.
TheBlackAdder
(28,209 posts).
You gotta love outsourcers who protect their client's data with robust vigor.
The problem with this is that there is a scale of fines. While it's something like $1,200 to expose one person's medical information, after a thousand are exposed, it caps and whether 1,000 are exposed or 1 million patients... it's the same fine. So, these firms really don't give a shit if there is a mass data breach, since they really don't feel it financially. This cap was done to protect the company from being financially crushed if they allow mass record exposure.
Quest takes a ding, but has a pasty and says it wasn't us. The two no-name firms continue to do business with them, since no one will really care in a few months. Those firms will probably sprinkle cash or give a reduced rate for a year or two and then it's business as usual.
.