Quest Diagnostics says hackers obtained protected health information of 34,000 patients

PITTSBURGH — Quest Diagnostics Incorporated announced Monday that it is investigating an unauthorized third-party intrusion into an internet application on its network. The company said it provided notice to individuals whose accounts have been affected.

An unauthorized third party accessed the MyQuest by Care360® internet application on Nov. 26 and obtained protected health information of approximately 34,000 patients. The accessed data included names, dates of birth, lab results, and in some instances, telephone numbers. The information did not include Social Security numbers, credit card information, insurance or other financial information.

There is no indication that individuals' information has been misused in any way, the company said.

When Quest Diagnostics discovered the intrusion, it immediately addressed the vulnerability. Quest is taking steps to prevent similar incidents from happening in the future, and is working with a leading cybersecurity firm to assist in investigating and further evaluating the company's systems, according to a press release.

The investigation is ongoing and the unauthorized intrusion has been reported to law enforcement.

Quest Diagnostics has notified affected individuals via mail and established a dedicated toll-free number to call with questions regarding this incident. The number is 888-320-9970, and can be reached Monday through Friday between 9 a.m. and 7 p.m. Eastern Time.

Quest annually serves one in three adult Americans and half the physicians and hospitals in the United States, according to the company’s website.

Cox Media Group