Quest Diagnostics breach affects info of 34,000 consumers

Quest Diagnostics, a nationwide healthcare laboratory chain that also sells a suite of information management systems, has notified about 34,000 individuals that some of their protected health information was compromised after an internet application on its network was hacked.

Quest Diagnostics HQ-CROP.jpg
Quest Diagnostics headquarters are seen in Teterboro, New Jersey, April, 2, 2002. The biggest medical laboratory company, agreed to buy Unilab Corp., California's largest provider of diagnostic testing services, for $1.1 billion. Photographer: Emile Wamsteker/ Bloomberg News.

The affected application was MyQuest, a patient portal enabling consumers to access health information and test results from Quest Diagnostics. The app also enables consumers to schedule an appointment, share health information, and it assists in offering tracking and reminders on medication.

Also See: Company warns that insulin pump could be hacked

Accessed data included patient names, birth dates, lab results and some telephone numbers, according to a statement from the company. Social Security numbers, credit card numbers, insurance information and financial information were not affected. Evaluation of information systems remains ongoing.

“There is no indication that individuals’ information has been misused in any way,” the company said in a statement. The company is not offering credit and/or identity theft protection services, according to a spokesperson, but patients with concerns are encouraged to call Quest at 888-320-9970.

This incident, which will be posted on the HHS Office for Civil Rights web site of breaches affecting 500 or more individuals, is the first major breach for Quest Diagnostics.

For reprint and licensing requests for this article, click here.