Quest Diagnostics Data Breach: The Inside Scoop

Quest Diagnostics is the latest healthcare industry victim to suffer from a data breach at the hands of hackers seeking to steal valuable personal information and other enterprise data.

In a recent December 2016 statement, Quest Diagnostics, Inc. stated that a data breach affecting approximately 34,000 people had occurred. The medical laboratory operator becomes yet another member of the healthcare industry to be targeted for the valuable consumer data that it keeps as enterprise data. In the aftermath of the breach, Quest Diagnostics is working with law enforcement and a cybersecurity firm to better understand how the breach occurred.

Data Breach

How Did The Quest Diagnostics Data Breach Occur?
Quest Diagnostics, based in Madison, New Jersey, stated that “an unauthorized third party” gained access to its enterprise data on November 26, 2016. The hackers managed to exploit a possible vulnerability in an improperly secured mobile app called MyQuest by Care360. By exploiting the security loophole within the app, hackers were able to steal an assortment of customer information, including: names, dates of birth, lab results, and telephone numbers. The latest reports also state that the stolen data did not include financial information, insurance details, Social Security numbers, or credit card accounts.

In the aftermath of the data breach, Quest Diagnostics is working diligently with law enforcement to identify the hackers. The medical laboratory operator is also working with a cybersecurity firm to bolster security and prevent future data breaches. The healthcare provider has also notified any affected clients via mail. A dedicated number to answer questions regarding the breach has also been established. Clients can contact a Quest Diagnostics representative who is briefed on the data breach to discuss their specific concerns by calling (888) 320-9970.

The Bottom Line: Applications Must Remain Up To Date To Prevent Data Breaches
As the details from the Quest Diagnostics data breach continue to emerge, one thing remains certain: applications must remain secure if future data breaches are to be avoided. Only through a proactive approach that puts the security of enterprise data first, can businesses stay ahead of hackers’ attempts to steal data. Finally, healthcare companies need to remain diligent in the face of an onslaught of attacks that seek to steal medical records, which are worth up to 10 times as much as credit card information on the black market. For additional insights into the best practice approaches for protecting your business and vital enterprise data from future data attacks, contact QualityIP located in {city} via [email protected] or (330) 931-4141.