The list of companies impacted by the American Medical Collection Agency (AMCA) data breach has grown, with Clinical Pathology Laboratories (CPL) now reporting that the PHI of about 2.2 million customers may have been affected.
CPL began notifying patients on July 5 that it had been caught up in the AMCA breach after learning last May that its patients were impacted. The breach itself was discovered last March 21. At this time, CPL said it is unaware of any misuse of the exposed information.
“However, at the time of AMCA’s initial notification, AMCA did not provide CPL with enough information for CPL to identify potentially affected patients or confirm the nature of patient information potentially involved in the incident, and CPL’s investigation is ongoing,” CPL said in a statement.
The compromised information includes patient names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information, but not Social Security numbers, lab results or clinical histories.
Clinical Pathology Laboratories joins other impact lab operators, including Quest Diagnostics and LabCorp, which had 11.9 million and 7.7 million patients compromised, respectively.