LabCorp Vendor hacked – 109,000 medical records exposed

If you are a current or former patient of LabCorp, also known as Laboratory Corp. or America Holdings, you may have been negatively affected by a recent data breach. The company which stores these patient records on behalf of LabCorp, nTreatment, has been involved in a data breach.

On December 1, it was first discovered that nTreatment’s records had been exposed online due to failure to secure cloud storage.  Approximately 109,000 files were exposed. These files included patients’ test results, doctors’ notes, insurance claims, medical records, and other sensitive data for patients across the United states.  Some of the information exposed may have been protected under HIPAA.

Medical records have become a target for cybercriminals because medical records are uniquely valuable.  Personal health information sells for higher prices than other types of personal information.

Patients are required to share their personal and sensitive information to obtain medical treatment.  In turn, healthcare providers, such as LabCorp and its vendor, nTreatment, owe a duty to protect that information.  However, LabCorp and nTreatment failed to do so when it allowed cybercriminals to access patients’ sensitive information and failed to discover it when the data breach occurred.

During this time, patients’ sensitive information has been exposed to cybercriminals and may soon be, it not already, fraudulently used. Attorneys at Finkelstein, Blankinship, Frei-Pearson & Garber, LLP have successfully recovered millions of dollars on behalf of data breach victims.  We are currently investigating this matter, as well as other data breaches.  If you believe that your information may have been unlawfully accessed, please contact us to discover your legal options.