[HITconsultant] Quest Diagnostics Confirms 12M Patients Information Exposed in Data Breach - Overclock.net - An Overclocking Community

Forum Jump: 

[HITconsultant] Quest Diagnostics Confirms 12M Patients Information Exposed in Data Breach

 
Thread Tools
post #1 of 9 (permalink) Old 06-04-2019, 06:50 PM - Thread Starter
Head Dwarf
 
iamjanco's Avatar
 
Join Date: Aug 2016
Location: In a circus tent
Posts: 1,922
Rep: 86 (Unique: 56)
[HITconsultant] Quest Diagnostics Confirms 12M Patients Information Exposed in Data Breach

Quote:
Quest Diagnostics, one of largest providers of diagnostic testing in the US, today confirmed that nearly 12 million customers may have had information compromised due to a data breach. American Medical Collection Agency (AMCA), a billing collections service provider notified Quest Diagnostics that an unauthorized user had access to AMCA’s system containing personal information AMCA received from various entities, including from Quest. AMCA provides billing collections services to Optum360, a Quest contractor.

...

Industry Expert Speaks Out

“Online payments always present a slew of security risks, especially when personal and health information might be exposed alongside the financial concerns. The risks may include credential stuffing, client-side vulnerabilities such as XXS, as well as server side vulnerabilities including remote code execution and server-side request forgery. When payment is subcontracted, as in the case of QuestDiagnostics, both sides need to be doubly concerned by the security of the APIs. Internet transactions are only as secure as the people and the tools safeguarding them,” said Ivan Novikov – CEO of AI-powered application security company Wallarm, white hat hacker and penetration tester.
Source.

Quest appears to have a history of various data breaches, including one in a which one of their employee's laptops containing names, addresses, and Social Security numbers was stolen. Nice to know personal data is being securely stored by those many typically have to deal with.

...playin' the lead roll in a dwerg tossing contest.


iamjanco is offline  
Sponsored Links
Advertisement
 
post #2 of 9 (permalink) Old 06-04-2019, 07:05 PM
Kill Confirmed
 
speed_demon's Avatar
 
Join Date: Nov 2006
Posts: 1,291
Rep: 74 (Unique: 62)
Is there any sort of penalty or charge imposed federally for this type of issue?

Because this type of problem will continue until mistakes become expensive to corporations.


speed_demon is online now  
post #3 of 9 (permalink) Old 06-04-2019, 07:12 PM - Thread Starter
Head Dwarf
 
iamjanco's Avatar
 
Join Date: Aug 2016
Location: In a circus tent
Posts: 1,922
Rep: 86 (Unique: 56)
I imagine there can be if negligence is evident.

What they really ought to start doing is hold individuals culpable when stuff like this happens, instead of companies. Companies get off way to easy here in the U.S.

...playin' the lead roll in a dwerg tossing contest.


iamjanco is offline  
Sponsored Links
Advertisement
 
post #4 of 9 (permalink) Old 06-04-2019, 08:15 PM
What should be here ?
 
huzzug's Avatar
 
Join Date: Jun 2012
Posts: 5,217
Rep: 356 (Unique: 255)
Quote: Originally Posted by iamjanco View Post
What they really ought to start doing is hold individuals culpable when stuff like this happens, instead of companies. Companies get off way to easy here in the U.S.
I mean it would if you don't recognize companies as individually legal entities with rights. Unless you change that, no one is ever going to get any sort of "tap on the wrist"

#2 their debt is insane, even for a "diverse field" company. They cannot even afford to service the debt maintenance let alone make an actual dent in the debt itself. - Internet Stranger
huzzug is offline  
post #5 of 9 (permalink) Old 06-04-2019, 08:29 PM
New to Overclock.net
 
m4fox90's Avatar
 
Join Date: Sep 2017
Posts: 378
Rep: 5 (Unique: 5)
Quote: Originally Posted by iamjanco View Post
I imagine there can be if negligence is evident.

What they really ought to start doing is hold individuals culpable when stuff like this happens, instead of companies. Companies get off way to easy here in the U.S.
corporate personhood was a very slippery slope that we've fallen down very hard and very far

Silence in the Snow
(13 items)
CPU
Ryzen 1600X
Motherboard
ASRock X370 Taichi
GPU
RTX 2080Ti Black Edition
RAM
G.Skill RipJaws V 16 GB @3466
Hard Drive
Samsung 960 EVO 500GB
Hard Drive
Seagate Barracuda 3TB
Hard Drive
Seagate FireCuda 2TB
Power Supply
Seasonic SnowSilent
Cooling
EK Coolstream PE 360
Cooling
EK Supremacy EVO
Case
Lian Li PC-O11 Dynamic
Operating System
Windows 10 Home
Monitor
Predator XB271HU
▲ hide details ▲
m4fox90 is offline  
post #6 of 9 (permalink) Old 06-05-2019, 06:42 AM
News Fiend
 
ryan92084's Avatar
 
Join Date: Oct 2015
Location: 'merica
Posts: 1,992
There really isn't any information left about me to be exposed at this point.

Meh '12
(13 items)
CPU
Ryzen 2600x
Motherboard
ASUS Crosshair VII Hero
GPU
XFX Fury X
RAM
G.SKILL TridentZ Series 16GB (2 x 8GB) 288-Pin DDR4 SDRAM DDR4 3200 F4-3200C14D-16GTZSW
Hard Drive
SAMSUNG 970 PRO M.2 2280 512GB PCIe Gen3. X4, NVMe
Hard Drive
Samsung 850 Pro-Series
Hard Drive
Seagate 4TB Enterprise NAS SATA (ST4000VN0001)
Hard Drive
WD Black 1TB Performance Desktop Hard Drive WD1003FZEX
Power Supply
SEASONIC PLATINUM-860 860W RT
Cooling
Black Ice Nemesis 360GTS Radiator x2
Cooling
Monsoon MMRS Reservoir + D5 pump + mountings
Cooling
XSPC Raystorm Neo Metal
Cooling
EKWB Fury X
Cooling
Monsoon Free Center 1/2ID 3/4OD fittings + Rotaries + plug + Temp probe
Cooling
BeQuiet SilentWings 3 High Speed PWM x 9
Case
Lian Li PC-O11 Dynamic
Operating System
Windows 10 Pro
Monitor
LG 27" IPS 27UK650
Keyboard
Massdrop CTRL
Mouse
Logitech g403
Mousepad
HAYATE KOU FX SOFT NINJA Black L
Audio
Blue Yeti Black
Audio
Massdrop x AKG K7XX
Other
LIAN LI O11D-1X ,Riser Cable and cover bracket for PC-O11D
CPU
i5 3570k
Motherboard
Z77x-UD5H
GPU
Zotac 670 GTX AMP!
RAM
G.Skill f3-2400c10D-16gtx
Hard Drive
Samsung 850 Pro 128GB
Optical Drive
Some old thing
Power Supply
Seasonic platinum 860w
Cooling
Custom water
Case
Customized Thermaltake Armor
Operating System
Win 10 pro
Monitor
Dell U2413
Keyboard
Ducky Shine
Mouse
Logi G502
▲ hide details ▲


ryan92084 is offline  
post #7 of 9 (permalink) Old 06-05-2019, 09:18 AM - Thread Starter
Head Dwarf
 
iamjanco's Avatar
 
Join Date: Aug 2016
Location: In a circus tent
Posts: 1,922
Rep: 86 (Unique: 56)
Quote: Originally Posted by ryan92084 View Post
There really isn't any information left about me to be exposed at this point.
That might be true for a large number of people, myself included.

...playin' the lead roll in a dwerg tossing contest.


iamjanco is offline  
post #8 of 9 (permalink) Old 06-05-2019, 09:28 AM
What should be here ?
 
huzzug's Avatar
 
Join Date: Jun 2012
Posts: 5,217
Rep: 356 (Unique: 255)
Quote: Originally Posted by ryan92084 View Post
There really isn't any information left about me to be exposed at this point.
It may not be about what is exposed. It's whom do you blame it on. If something big went wrong today and you were one of a few affected by it, whom do you go after for not protecting your personal data?

#2 their debt is insane, even for a "diverse field" company. They cannot even afford to service the debt maintenance let alone make an actual dent in the debt itself. - Internet Stranger
huzzug is offline  
post #9 of 9 (permalink) Old 06-06-2019, 03:07 AM
News Fiend
 
ryan92084's Avatar
 
Join Date: Oct 2015
Location: 'merica
Posts: 1,992
Quote: Originally Posted by huzzug View Post
It may not be about what is exposed. It's whom do you blame it on. If something big went wrong today and you were one of a few affected by it, whom do you go after for not protecting your personal data?
It isn't that I don't care but just a statement on the sad state of things. Between the Sony, Equifax, mortgage and Quest leaks plus all the smaller ones we'll never hear/have forgotten about its almost all out there. Once my dermatologist goes there really won't be anything left to the imagination.

As for whom do you go after until we get some data protection laws with more teeth it won't matter much. Maybe a massive class action settlement would put enough fear in companies to straighten their act for a bit.

Meh '12
(13 items)
CPU
Ryzen 2600x
Motherboard
ASUS Crosshair VII Hero
GPU
XFX Fury X
RAM
G.SKILL TridentZ Series 16GB (2 x 8GB) 288-Pin DDR4 SDRAM DDR4 3200 F4-3200C14D-16GTZSW
Hard Drive
SAMSUNG 970 PRO M.2 2280 512GB PCIe Gen3. X4, NVMe
Hard Drive
Samsung 850 Pro-Series
Hard Drive
Seagate 4TB Enterprise NAS SATA (ST4000VN0001)
Hard Drive
WD Black 1TB Performance Desktop Hard Drive WD1003FZEX
Power Supply
SEASONIC PLATINUM-860 860W RT
Cooling
Black Ice Nemesis 360GTS Radiator x2
Cooling
Monsoon MMRS Reservoir + D5 pump + mountings
Cooling
XSPC Raystorm Neo Metal
Cooling
EKWB Fury X
Cooling
Monsoon Free Center 1/2ID 3/4OD fittings + Rotaries + plug + Temp probe
Cooling
BeQuiet SilentWings 3 High Speed PWM x 9
Case
Lian Li PC-O11 Dynamic
Operating System
Windows 10 Pro
Monitor
LG 27" IPS 27UK650
Keyboard
Massdrop CTRL
Mouse
Logitech g403
Mousepad
HAYATE KOU FX SOFT NINJA Black L
Audio
Blue Yeti Black
Audio
Massdrop x AKG K7XX
Other
LIAN LI O11D-1X ,Riser Cable and cover bracket for PC-O11D
CPU
i5 3570k
Motherboard
Z77x-UD5H
GPU
Zotac 670 GTX AMP!
RAM
G.Skill f3-2400c10D-16gtx
Hard Drive
Samsung 850 Pro 128GB
Optical Drive
Some old thing
Power Supply
Seasonic platinum 860w
Cooling
Custom water
Case
Customized Thermaltake Armor
Operating System
Win 10 pro
Monitor
Dell U2413
Keyboard
Ducky Shine
Mouse
Logi G502
▲ hide details ▲



Last edited by ryan92084; 06-06-2019 at 03:23 AM.
ryan92084 is offline  
Reply

Quick Reply
Message:
Options

Register Now

In order to be able to post messages on the Overclock.net - An Overclocking Community forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.
User Name:
If you do not want to register, fill this field only and the name will be used as user name for your post.
Password
Please enter a password for your user account. Note that passwords are case-sensitive.
Password:
Confirm Password:
Email Address
Please enter a valid email address for yourself.
Email Address:

Log-in



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page


Forum Jump: 

Posting Rules  
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off