The California Office of the Attorney General reported a data breach involving Quest Diagnostics on December 12, 2016. The breach occurred on November 26, 2016, when an unauthorized third party accessed the MyQuest by Care360® internet application, compromising Protected Health Information (PHI) of approximately 34,000 patients, which included names, dates of birth, and lab results.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-65390
TPRM report: https://www.rankiteo.com/company/quest-diagnostics
"id": "que238072625",
"linkid": "quest-diagnostics",
"type": "Breach",
"date": "11/2016",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 34000,
'industry': 'Healthcare',
'name': 'Quest Diagnostics',
'type': 'Healthcare'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'number_of_records_exposed': 34000,
'personally_identifiable_information': ['Names',
'Dates of Birth'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Protected Health Information '
'(PHI)']},
'date_detected': '2016-11-26',
'date_publicly_disclosed': '2016-12-12',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Quest Diagnostics on December 12, 2016. The '
'breach occurred on November 26, 2016, when an unauthorized '
'third party accessed the MyQuest by Care360® internet '
'application, compromising Protected Health Information (PHI) '
'of approximately 34,000 patients, which included names, dates '
'of birth, and lab results.',
'impact': {'data_compromised': ['Names', 'Dates of Birth', 'Lab Results'],
'systems_affected': ['MyQuest by Care360® internet application']},
'references': [{'date_accessed': '2016-12-12',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unauthorized Third Party',
'title': 'Quest Diagnostics Data Breach',
'type': 'Data Breach'}