Our attorneys are investigating reports that Quest Diagnostics, one of the largest lab test companies, has exposed 12 million customers’ personal information. Quest announced on May 31st that its medical billing vendor, American Medical Collection Agency, had suffered a data breach of its billing database, which contained medical and payment information, and Social Security numbers. A few days later, an announcement came of a similar LabCorp data breach of 7.7 million customers, whose data was in American Medical Collection Agency’s systems.
Quest Data Breach Lasted For Months
Quest Diagnostics learned from its collection company, American Medical Collection Agency (AMCA), that a hacker had acquired unauthorized access to its medical billing database from August 2018 to March 2019. The data breach exposed the personal information of approximately 12 million customers including customer bank account information, credit card numbers, SSNs, along with other personal data. In an official statement, Quest said it has not yet received a detailed report from AMCA regarding the breach. Quest has confirmed that since AMCA did not have access to lab result data, this information was not affected. In the official statement, Quest also confirmed that it has begun reaching out to customers that may have been impacted by the data breach.
Receive a breach notification?
Contact us to learn your rights. Free consultation.
Data from American Medical Collection Agency's data breach already being sold on darkweb
Gemini Advisory discovered about 200,000 patients’ payment card information for sale on a well-known darkweb marketplace, according to databreaches.net (“DBN”). Gemini Advisory tried to contact American Medical Collection Agency, but was ignored, DBN reports.
After being snubbed by American Medical Collection Agency, Gemini Advisory reported the data breach to law enforcement, who got in touch with AMCA, DBN reports.
When Gemini found the hacked database information, it was labeled “USA|DOB|SSN,” and because credit card data is rarely sold with associated date of birth and Social Security numbers, Gemini immediately suspected a compromise in an online portal that would collect this type of information, DBN reports.
Our Data Breach Lawsuit Experience
Our attorneys recently won two prestigious awards for our work in data breach lawsuits. Eric Gibbs received a 2018 “MVP” award and 2019 CLAY award (“California Attorney: Lawyer of the Year”) for his work successfully representing data breach victims.
Our attorneys served in a court-appointed leadership role in the Anthem data breach class action, and helped achieve a $115 million settlement for victims of the Anthem data breach. The settlement received final approval from the court in August 2018.
We’ve also achieved landmark results in our past data breach cases, including the Adobe data breach litigation, UCSF data breach lawsuit, and Health Net of California data breach litigation.