A total of 7.7 million customers of the medical testing giant LabCorp exposes their personal and financial data leak to a security breach of the American Medical Collection Agency (AMCA), a third-party billing collection firm.This third-party billing collection firm have been recently breached another competing medical company of the LabCorp, the Quest Diagnostics, with over 12 million Quest patients have been exposed due to a security breach.
The AMCA is a company located in New York City which was known to be aggressive in collecting debt for a broad range of businesses that includes medical labs and hospitals, state and local traffic/toll agencies, telecom companies, and direct marketers.
This news about how Quest suffered to a major security breach was circulating around different social media platforms. That’s why today’s LabCorp data leak disclosure suggests that we are nowhere near done hearing about other customers of competing companies being victims because of this incident.
LabCorp filed with the U.S. Securities and Exchange Commission and said that they were recently notified by a security breach of the AMCA that occurred between Aug. 1, 2018 and March 30, 2019.After the incident happened, LabCorp announces that the information that was exposed to the security breach could include first and last name, date of birth, address, phone, date of service, medical providers, and balance information of the customers.
In the report filed by the LabCorp, it said that the AMCA’s affected system also included credit card or bank account information that was provided by the consumer to AMCA. LabCorp provided no ordered test, laboratory results, or diagnostic information to AMCA. AMCA has advised LabCorp that Social Security Numbers and insurance identification information are not stored or maintained for LabCorp consumers.
Furthermore, the report stated that the AMCA has informed LabCorp that it is in the process of sending notices to approximately 200,000 LabCorp consumers whose credit card or bank account information may have been accessed. AMCA has not yet provided LabCorp a list of the affected LabCorp consumers or more specific information about them.
LabCorp is working closely with AMCA to obtain more information and to take additional steps such as providing strict fraud monitoring to ensure fraud protection against hackers while refusing to give comment about the report filed by LabCorp against the collection firm.