News reports spoke of the American Medical Collection Agency (AMCA) data breach that brought about the compromise of 11.9 million Quest Diagnostics patient records. Current news cite another healthcre company affected by the AMCA breach.
LabCorp, which operates a national network of blood testing centers, reported on June 4, 2019 the sensitive information of 7.7 million people were potentially exposed. The patients affected include those whose blood samples were processed by LapCorp.
Much like Quest Diagnostics, LabCorp confirmed the breach through a U.S. Securities and Exchange Commission (SEC) filing. LabCorp states that AMCA informed the company about its data exposure when unauthorized people hacked its payment portal on August 1, 2018 to March 30, 2019.
AMCA expressed on its website that it processes more than $1 billion in annual receivables for a different client base, which include laboratories, medical centers, physicians groups, billing services, and healthcare organizations all over the country.
Hence, it’s not unusual that the AMCA data breach affected another healthcare organization. Probably, other related announcements would follow in the up coming days or weeks.
The exposed healthcare records has reached about 19.6 million to date from just two healthcare organizations that were impacted by the breach.
LabCorp mentioned that the exposed data included: names, addresses, phone numbers, dates of birth, dates of service, provider information, balance information, and some banking and credit card data. No Social Security number was exposed. No diagnostic info, medical test results, or insurance information were given to AMCA by LabCorp. LabCorp already ended the services of AMCA for billing collections.
AMCA is offering approximately 200,000 people whose financial information were compromised two years credit monitoring and identity theft protection services for free. LabCorp does not know yet the complete details of the people impacted by the breach, and so it has not yet sent notificationas to its customers.
Gemini Advisory informed AMCA yesterday that close to 200,000 credit cards data were being sold on a darknet marketplace. After checking, the credit card numbers were not from LabCorp customers considering that LabCorp was giving AMCA the Social Security numbers of its patients.