Back to Data breach

Data breach

LabCorp breach exposes sensitive data of nearly eight million customers


On June 5, 2019, North Carolina-based medical testing firm, LabCorp, revealed that personal and financial information of more than 7.7 million of its customers had been exposed in a data breach. The compromised information included first names, last names, dates of birth, addresses, phone numbers, dates of service, names of providers, credit card details, and bank information.

What happened?

Between August 1, 2018 and March 30, 2019, the web payment page of the American Medical Collection Agency (AMCA), Labcorp's third-party billing vendor, was victim to unauthorized activity. AMCA informed LabCorp that it was in the process of notifying affected customers whose personal and financial information may have been stolen, but LabCorp has yet to receive a list of these consumers. The LabCorp news comes just days after a similar breach at AMCA exposed the personal, financial, and medical data of approximately 11.9 million Quest Diagnostics patients.

As soon as the breach was detected, AMCA performed an audit with the help of a third-party cybersecurity forensics firm and took down its web payments page. The company has also notified law authorities and hired an IT security team to investigate the breach.

Threats are everywhere, and it's important to be prepared for such incidents. If you want to avoid disasters like these and stay out of the news for the wrong reasons, investing in a comprehensive SIEM solution like Log360 is key. Download a 30-day, free trial to start combating internal and external security attacks.

How ManageEngine can help:

Log360, our comprehensive SIEM solution, can help your organization by:

  • Alerting security teams in real time about events that require their immediate attention, such as network attacks, unauthorized access attempts to files or folders, security group membership changes, and account lockouts.
  • Detecting unauthorized network access attempts with its built-in Structured Threat Information eXpression (STIX/TAXII) feeds processor. Log360 also has a global IP threat database that can instantly detect known malicious traffic passing through the network as well as outbound connections to malicious domains and callback servers. Its global IP threat database contains more than 600 million blacklisted IP addresses collected from trusted open-source threat feeds and updated daily.
  • Finding potential insider threats with its user and entity behavior analytics engine, which creates a baseline of normal activities that are specific to each user, and then notifying security personnel instantly when there's a deviation from this norm. Rather than using static threshold values, Log360 employs a combination of data analytics and machine learning to define dynamic thresholds based on real-world user behavior.
  • Obtaining important forensic information about incidents. The collected logs can be securely archived to help prove adherence to compliance standards and reduce potential legal penalties during investigations.
  • Automatically raising incidents as tickets to specific technicians in ServiceDesk Plus, JIRA, Zendesk, Kayako, or ServiceNow to create an incident resolution process that's swift and accountable.

Download a free trial of Log360 to see the tool in action for yourself.


Stay In The Know

Thank you

You will receive weekly cybersecurity news soon!

  • Please enter a business email id
    By clicking 'I'm Interested', you agree to processing of personal data according to the Privacy Policy.

2022 Zoho Corporation Pvt. Ltd. All rights reserved.