The Latest / Data Security News

Security Breaches in Healthcare Strike Again

June 18, 2019

Two security breaches in healthcare have struck rival lab testing companies. The breaches have come from Quest Diagnostics and LabCorps’ business relationship with the third-party billing service, the American Medical Collection Agency (AMCA).

Security breaches in healthcare

Data Breach Impacting Over 19 Million Patients

An unauthorized user accessed the data of both companies in the security breaches in healthcare seen here. The AMCA, a third-party to both organizations, has had issues protecting the information shared with it by both organizations. The data compromised for each company appears to be different.

In the case of Quest Diagnostics, 11.9 million patients financial data, social security numbers and medical information were compromised. Test results were not as these were not provided to the vendor. LabCorp, which has 7.7 million patients said social security number were not affected. However, it said:

“AMCA’s affected system included information provided by LabCorp. That information could include first and last name, date of birth, address, phone, date of service, provider, and balance information. [It also] included credit card or bank account information that was provided by the consumer to AMCA.”

Third-party vendor security risk

We see so many security breaches in healthcare and other industries that involve an issue at a third party. Data is most vulnerable when it is being shared outside your own organization. You might have the best internal security solution available, but if your data is exposed when it is shared outside your organization, it doesn’t matter. Your security is only as strong as your weakest partners.

The solution is a security ecosystem that is easily extended and shared with your partners. With such an approach, you can ensure your data is secure and safe wherever it is. This is what our security ecosystem provides. It becomes easy to extend and incorporate your identity management and encryption solutions to partners through a GDS client that can run on all devices. Find out more here.