What happened in the Quest Diagnostics data breach?
Twingate Team
•
May 24, 2024
In June 2019, a data breach at a third-party billing company, American Medical Collection Agency (AMCA), potentially exposed the medical and financial information of millions of Quest Diagnostics customers. The unauthorized user had access to AMCA's system and customer information for an extended period. Following the attack, Quest Diagnostics and Optum360, Quest Diagnostics' revenue cycle management provider, faced several class action lawsuits over the data breach, and the legal problems are continuing.
How many accounts were compromised?
The breach impacted data related to approximately 20 million individuals.
What data was leaked?
The data exposed in the breach included medical records, financial information, Social Security numbers, contact details, and insurance data of affected individuals.
How was Quest Diagnostics hacked?
Hackers breached the American Medical Collection Agency's (AMCA) web payment page, gaining unauthorized access to Quest Diagnostics' customer information for eight months. The exposed data included personal, financial, and medical information, but not laboratory test results.
Quest Diagnostics's solution
In response to the hack, Quest Diagnostics took several measures to enhance security and prevent future incidents. The company suspended sending collection requests to AMCA and worked closely with Optum360 and outside security experts to investigate the data security incident. Quest Diagnostics also ensured that notifications were provided to affected health plans and regulators as required by federal and state law. Their commitment to the privacy and security of patients' personal information led them to take the matter very seriously and work diligently to address the breach.
How do I know if I was affected?
Quest Diagnostics notified affected customers about the breach. If you are a Quest Diagnostics customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For more specific help and instructions related to Quest Diagnostics's data breach, please contact Quest Diagnostics Customer Service directly.
Where can I go to learn more?
If you want to find more information on the Quest Diagnostics data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Quest Diagnostics data breach?
Twingate Team
•
May 24, 2024
In June 2019, a data breach at a third-party billing company, American Medical Collection Agency (AMCA), potentially exposed the medical and financial information of millions of Quest Diagnostics customers. The unauthorized user had access to AMCA's system and customer information for an extended period. Following the attack, Quest Diagnostics and Optum360, Quest Diagnostics' revenue cycle management provider, faced several class action lawsuits over the data breach, and the legal problems are continuing.
How many accounts were compromised?
The breach impacted data related to approximately 20 million individuals.
What data was leaked?
The data exposed in the breach included medical records, financial information, Social Security numbers, contact details, and insurance data of affected individuals.
How was Quest Diagnostics hacked?
Hackers breached the American Medical Collection Agency's (AMCA) web payment page, gaining unauthorized access to Quest Diagnostics' customer information for eight months. The exposed data included personal, financial, and medical information, but not laboratory test results.
Quest Diagnostics's solution
In response to the hack, Quest Diagnostics took several measures to enhance security and prevent future incidents. The company suspended sending collection requests to AMCA and worked closely with Optum360 and outside security experts to investigate the data security incident. Quest Diagnostics also ensured that notifications were provided to affected health plans and regulators as required by federal and state law. Their commitment to the privacy and security of patients' personal information led them to take the matter very seriously and work diligently to address the breach.
How do I know if I was affected?
Quest Diagnostics notified affected customers about the breach. If you are a Quest Diagnostics customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For more specific help and instructions related to Quest Diagnostics's data breach, please contact Quest Diagnostics Customer Service directly.
Where can I go to learn more?
If you want to find more information on the Quest Diagnostics data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
What happened in the Quest Diagnostics data breach?
Twingate Team
•
May 24, 2024
In June 2019, a data breach at a third-party billing company, American Medical Collection Agency (AMCA), potentially exposed the medical and financial information of millions of Quest Diagnostics customers. The unauthorized user had access to AMCA's system and customer information for an extended period. Following the attack, Quest Diagnostics and Optum360, Quest Diagnostics' revenue cycle management provider, faced several class action lawsuits over the data breach, and the legal problems are continuing.
How many accounts were compromised?
The breach impacted data related to approximately 20 million individuals.
What data was leaked?
The data exposed in the breach included medical records, financial information, Social Security numbers, contact details, and insurance data of affected individuals.
How was Quest Diagnostics hacked?
Hackers breached the American Medical Collection Agency's (AMCA) web payment page, gaining unauthorized access to Quest Diagnostics' customer information for eight months. The exposed data included personal, financial, and medical information, but not laboratory test results.
Quest Diagnostics's solution
In response to the hack, Quest Diagnostics took several measures to enhance security and prevent future incidents. The company suspended sending collection requests to AMCA and worked closely with Optum360 and outside security experts to investigate the data security incident. Quest Diagnostics also ensured that notifications were provided to affected health plans and regulators as required by federal and state law. Their commitment to the privacy and security of patients' personal information led them to take the matter very seriously and work diligently to address the breach.
How do I know if I was affected?
Quest Diagnostics notified affected customers about the breach. If you are a Quest Diagnostics customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
For more specific help and instructions related to Quest Diagnostics's data breach, please contact Quest Diagnostics Customer Service directly.
Where can I go to learn more?
If you want to find more information on the Quest Diagnostics data breach, check out the following news articles:
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions