A series of data breaches involving the medical information of more than 20 million has attracted the attention of Congress prompting Sens. Bob Menendez, D-N.J., Cory Booker, D-N.J., and Mark Warner, D-Va., to write the organization for more details.
“We are deeply concerned that this breach compromised personal, financial, and medical information of nearly 12 million Quest Diagnostics Inc. patient,” Menendez and Booker said in the June 5, letter to Quest CEO Stephen Rusckowski. The lawmakers also demanded the firm provide a detailed timeline or the breach and how the company responded to it.
Nearly 11.9 million people were exposed by a breach at Quest Diagnostics Inc., 7.7 million people were affected by the breach American Medical Collection Agency, and 400,000 people were affected by a breach at Opko Health Clients as data including names, dates of birth, addresses, financial and other personal information was compromised.
In a separate letter to Rusckowski, Warner said that he is concerned about the company’s supply chain management. Dan Tuchler, CMO at SecurityFirst, said there is a disturbing trend of with these breaches.
“First Quest, then LabCorp, and now Opko. All had private data compromised by a billing partner, AMCA,” Tuchler said. “This is a disturbing trend we’ve seen – companies are taking the right steps to protect their data, but their partners are not. This has to change.”