The American Medical Collection Agency alerted CPL in May that some customers’ information may have been affected in a massive data breach. The information affected included names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information.
AMCA, which serves as a third-party billing and collections vendor for CPL, learned of the data breach in March. The company said no Social Security numbers, lab results or clinical histories were affected.
“At the time of AMCA’s initial notification, AMCA did not provide CPL with enough information for CPL to identify potentially affected patients or confirm the nature of patient information potentially involved in the incident, and CPL’s investigation is ongoing,” said a statement on CPL’s website.
Other lab testing companies, including Quest Diagnostics and LabCorp, were also affected by the AMCA data breach.
More articles on cybersecurity:
Viewpoint: How Amazon Alexa is changing privacy in healthcare
Malware attack disrupts operations at Indiana medical center
Hackers gain access to Vermont ACO email account, possibly exposing data of 25,000 patients