The health records of more than 34,000 people were accessed by an unauthorized party, according to Quest Diagnostics Inc. The information was accessed on Nov. 26, 2016 and included lab results and, in some cases, phone numbers. The information did not include social security numbers, credit card information, insurance or other financial information. The breach was detailed in this Wall Street Journal story.
The affected application is called MyQuest by Care360. According to questdiagnostics.com, the mobile application is “an easy, convenient way to get your results.”
“With MyQuest, you can securely see, store and share health information — not just lab results — using your smartphone, tablet or desktop computer,” according to the website.
Clearly the word “securely” isn’t accurate, at least in this case.
Quest said it is working with a cybersecurity firm to assist in the investigation and in further evaluating the company’s systems. Individuals affected by the breach will be notified by mail, Quest said.
Are you covered for identity theft?