AMCA Breach Update: Dozen More Healthcare Firms Notify Patients of Data Breach

  • The AMCA data breach came to light in early June 2019.
  • The company’s investigation revealed that the hackers may have had gained accessed to its payment system since August 2018.

New details about the AMCA data breach have emerged recently. It has been found that the breach has affected many more healthcare firms in the United States than previously known.

Which are the new victims?

The firms that have been lately added to the list of providers affected by the data breach are:

  • American Esoteric Laboratories (534,500 impacted and another 7,400 with financial data);
  • Sunrise Medical Laboratories (412,000 impacted and 15,000 with financial data);
  • CBLPath (143,100 impacted and 4,200 with financial data);
  • Laboratory Medicine Consultants (143,400 impacted and 4,200 with financial data);
  • Austin Pathology Associates (44,700 impacted and 1,800 with financial data);
  • South Texas Dermatopathology (14,900 impacted and another 1,200 with financial data);
  • Pathology Solutions (12,700 impacted and 600 with financial data).

Victim firms that include less than 10,000 patients

There are also several companies that had less than 10,000 impacted patients. This includes

  • Laboratory of Dermatopathology ADX (4,000 impacted and another 240 with financial data);
  • Seacoast Pathology (9,200 impacted and 800 with financial data);
  • Western Pathology Consultants (4,200 impacted and 350 with financial data);
  • Arizona Dermatopathology (6,500 impacted and 500 with financial data);
  • Natera (unknown number of impacted patients).

Worth noting

The AMCA data breach came to light in early June, when two of its biggest customers, Quest Diagnostics and LabCorp, had filed 8-K forms with the US Securities and Exchange Commission (SEC). Later, it was revealed that over 422,00 patients of BioReference Laboratories and half a million patients of CareCentrix were also impacted.

The company’s investigation revealed that the hackers may have had gained accessed to its payment system since August 2018. The breach was discovered only in March 2019.