Healthcare

Debt Collection Agency Breach Puts 20 Million Patient Accounts at Risk

4 - 11 June 2019

The breach at a major US debt collection agency, American Medical Collection Agency (AMCA), may expose the personal information of 20 million patients
Cyber_News_Healthcare

The breach at a major US debt collection agency, American Medical Collection Agency (AMCA), may expose the personal information of 20 million patients instead of the initial estimates of 200,000. At least three medical lab test companies, LabCorp (7.7 million users), Quest Diagnostics (11.9 million users) and BioReference Laboratories (422,600 users), are affected as their third-party vendors have subscribed to AMCA services. The threat actors are believed to have hacked into AMCA’s website since August 2018 and planted a skimmer to collect personal data and credit card details. The attack only surfaces after credit card details belonging to AMCA customers are found at darknet market places.

 

References:

Over 400,000 Opko Health Clients Impacted by AMCA Data Breach

Quest Diagnostics Incorporated (Form 8-K)

Laboratory Corporation of America Holdings (Form 8-K)

OPKO Health, Inc. (Form 8-K)

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Solutioning

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence