LabCorp (Laboratory Corporation of America Holdings), a Burlington, North Carolina-based one of the largest clinical laboratory networks operator in the US, as per recent reports, has confirmed a massive data breach from the third-party firm – American Medical Collection Agency (AMCA). As per reports, personal information of nearly 7.7 million customers could’ve been exposed due to this breach. As per an SEC (U.S. Securities and Exchange Commission) filing report, published on Tuesday, Jun. 4th 2019, AMCA’s web payment page witnessed unauthorized activity occurring between Aug. 1st, 2018, and Mar. 30th, 2019.
Speculations are that the exposed data could have included first and last name, date of birth, address, phone number, date of service, provider, balance information, credit card or bank account information. LabCorp in its recent announcement has confirmed that it did not share any ordered test data, laboratory results, or diagnostic information with AMCA. Moreover, AMCA, in its assurance, has advised LabCorp that information such as Social Security Numbers and insurance identification were not stored or maintained for LabCorp consumers.
AMCA in its statement has indicated that it’ll continue the investigation in this matter and has already taken steps to further strengthen the security of its systems, processes, and data. As per the SEC document, AMCA intends to provide LabCorp with more specific information about the 200,000 affected LabCorp consumers, apart from offering them identity protection and credit monitoring services for 24 months.