Debt Collection Agency Breach Puts 20 Million Patient Accounts at Risk
The breach at a major US debt collection agency, American Medical Collection Agency (AMCA), may expose the personal information of 20 million patients instead of the initial estimates of 200,000. At least three medical lab test companies, LabCorp (7.7 million users), Quest Diagnostics (11.9 million users) and BioReference Laboratories (422,600 users), are affected as their third-party vendors have subscribed to AMCA services. The threat actors are believed to have hacked into AMCA’s website since August 2018 and planted a skimmer to collect personal data and credit card details. The attack only surfaces after credit card details belonging to AMCA customers are found at darknet market places.
More Weekly Cyber Newsanalysis and insights
Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.
Architecting and implementing cybersecurity solutions that bolster defences
Ensign Managed Security Services
Managing your security operations for advanced threat detection, continuous monitoring, and triage services