Search
Homepage This page's url is: -crn-
Latest News Applications OS Channel Programs Cloud Components & Peripherals Data Center Internet of Things Managed Services Mobility Networking Running Your Business Security Storage Virtualization
All Carousels Applications OS Channel Programs Cloud Components & Peripherals Data Center Internet of Things Managed Services Mobility Networking Running Your Business Security Storage Virtualization
Edge Computing Office 365 IoT Platforms Cloud Storage Cloud Partner Programs Software-defined Data Center Industry Trends
HP Inc. Spectrum Partner Program Wasabi Scale Computing Veeam
CRN Showcase Dell Technologies Cloud Learning Center Lenovo Learning Center Sophos Cybersecurity Learning Center Disaster Recovery Learning Center XChange Showcase Cloud 100 Showcase Channel Chief Showcase Cohesity Learning Center NetApp Data Driven Learning Center SD-WAN Learning Center BlackBerry Cylance Learning Center Eaton Learning Center Symantec Business Security Learning Center
Rankings and Research Companies Channelcast Marketing Matters CRNtv Events WOTC Jobs HPE Zone HPE Discover 2019 News Cisco Partner Summit 2019 News Cisco Wi-Fi 6 Newsroom Dell Technologies Newsroom Hitachi Vantara Newsroom HP Reinvent Newsroom IBM Newsroom The IoT Integrator Lenovo Newsroom Lexmark Newsroom NetApp Data Fabric NetApp Insight 2019 News Cisco Live Newsroom Intel Tech Provider Zone

Quest Diagnostics Breach Exposes Sensitive Data Of 11.9M Patients

The exposed data included medical information, financial information such as credit card numbers and bank account information, and other personal information like Social Security numbers, according to Quest.

By Michael Novinson June 03, 2019, 02:44 PM EDT

Quest Diagnostics said Monday that a potential breach on the web payment page of its billings collection vendor exposed financial and medical information of 11.9 million patients.

The New York-based clinical laboratory provider said that, between Aug. 1, 2018 and March 30, 2019, an unauthorized user had access to the American Medical Collection Agency (AMCA) system containing information that AMC had received from Quest Diagnostics and others, according to a filing with the U.S. Securities and Exchange Commission (SEC). This information was provided to Quest by AMCA.

The information on AMCA's affected system included medical information, financial information such as credit card numbers and bank account information, and other personal information like Social Security Numbers, according to the Quest filing. Quest said its laboratory tests were not provided to AMCA, and therefore weren't impacted by the breach.

[Related: ConnectWise CEO Defends Security Stance In Wake Of Wipro Breach]

"Quest Diagnostics takes this matter very seriously and is committed to the privacy and security of patients' personal, medical and financial information," the company wrote in its filing.

The number of Quest Diagnostics patients with information on AMCA's affected system as of March 30 was approximately 11.9 million people, the company said. Quest said that AMCA has been in contact with law enforcement regarding the breach.

Quest said it has insurance coverage in place for certain potential liabilities and costs related to the breach. The insurance coverage, however, is limited in amount and subject to a deductible, according to Quest.

In response to the breach, Quest said it has stopped sending collection requests to AMCA. The company has also been working with outside security experts, AMCA and revenue cycle management provider Optum360 to investigate the AMCA breach as well as its potential impact on Quest Diagnostics and its patients.

Quest said it has provided notifications to affected public health plans, and will ensure that notification is provided to regulators and others as required by federal and state law.

Related Topics:
Back to Top

Video

 

sponsored resources

Copyright The Channel Company, All rights reserved