DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

South Texas Dermatopathology and Laboratory of Dermatopathology ADX Notify Their Patients of AMCA Breach (Update4)

Posted on July 19, 2019 by Dissent

Update 1: And now add Seacoast Pathology, (9,300 affected) to the 20,000 described in the original post below, and the approximately 21 million disclosed last month.

Update 2 (July 21): And now add American Esoteric Laboratories (541,900), CBLPath, Inc. (148,900), and Natera (unspecified number) to the list and tally.

Update 3 (July 22): And now add Arizona Dermatopathology (7,000) and Austin Pathology Associates (46,500) to the list and tally.

Update 4 (July 23): And also Laboratory Medicine Consultants, Ltd. (147600), Pathology Solutions (13,300), Western Pathology Consultants (4550) to the list and tally.


Original post:

Add South Texas Dermatopathology, PLLC and Laboratory of Dermatopathology ADX, LLC (“LDA”), to the list of victims of the American Medical Collection Agency breach. Here are their press releases 


SAN ANTONIO, July 19, 2019 /PRNewswire/ — South Texas Dermatopathology, PLLC has been informed by Retrieval Masters Creditors Bureau d/b/a American Medical Collection Agency (“AMCA”) of a data security incident involving the AMCA payment website. AMCA is an independent collection agency that South Texas Dermatopathology and many other entities used for debt collection.  The incident is limited to AMCA’s systems.  The security of South Texas Dermatopathology’s systems was not affected by this incident.

According to AMCA, on March 21, 2019, AMCA became aware of facts indicating there had been a data security incident. After conducting an investigation, in May of 2019, AMCA notified South Texas Dermatopathology about the incident and informed South Texas Dermatopathology that an AMCA database containing information for some South Texas Dermatopathology patients had been affected.  However, at the time of AMCA’s initial notification, AMCA did not provide South Texas Dermatopathology with enough information for South Texas Dermatopathology to identify potentially affected patients or confirm the nature of patient information potentially involved in the incident, and South Texas Dermatopathology’s investigation is on-going. Based on the information provided by AMCA, the following information belonging to South Texas Dermatopathology patients may have been affected by the incident: patient names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information.  AMCA has advised South Texas Dermatopathology that its patient’s social security numbers were not involved in the incident.  South Texas Dermatopathology does not provide AMCA healthcare records such as laboratory results and clinical history.

In response to the breach, AMCA sent notification letters to approximately 1,200 South Texas Dermatopathology patients informing them that their names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information may have been impacted. In addition, based on the investigation and the information provided by AMCA, South Texas Dermatopathology estimates that approximately another 14,900 patients may have had their names, addresses, phone numbers, dates of birth, dates of service, balance information and treatment provider information impacted by this incident.  For these patients, credit card and banking information is not affected. The impact of this incident is limited to laboratory services provided to patients in the United States whose accounts were referred for debt collection.

Individuals with questions about this incident or questions about precautionary steps they can take may call 833-300-6928 for additional information.

South Texas Dermatopathology takes the security of its patients’ information very seriously, including the security of data handled by vendors.  As a result of the investigation, South Texas Dermatopathology is no longer using AMCA for collection efforts.

The privacy and protection of patient information is a top priority.  South Texas Dermatopathology greatly appreciates the patience and loyalty of its patients as it works to respond to this incident.


WOODBURY, N.Y., July 19, 2019 /PRNewswire/ — Laboratory of Dermatopathology ADX, LLC (“LDA”), has been informed by Retrieval Masters Creditors Bureau d/b/a American Medical Collection Agency (“AMCA”) of a data security incident involving the AMCA payment website.  AMCA is an independent collection agency that LDA and many other entities used for debt collection.  The incident is limited to AMCA’s systems.  The security of LDA’s systems was not affected by this incident.

According to AMCA, on March 21, 2019, AMCA became aware of facts indicating there had been a data security incident. After conducting an investigation, in May of 2019, AMCA notified LDA about the incident and informed LDA that an AMCA database containing information for some LDA patients had been affected.  However, at the time of AMCA’s initial notification, AMCA did not provide LDA with enough information for LDA to identify potentially affected patients or confirm the nature of patient information potentially involved in the incident, and LDA’s investigation is on-going. Based on the information provided by AMCA, the following information belonging to LDA patients may have been affected by the incident: patient names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information.  AMCA has advised LDA that its patient’s social security numbers were not involved in the incident.  LDA does not provide AMCA healthcare records such as laboratory results and clinical history.

In response to the breach, AMCA sent notification letters to approximately 240 LDA patients informing them that their names, addresses, phone numbers, dates of birth, dates of service, balance information, credit card or banking information and treatment provider information may have been impacted.  In addition, based on the investigation and the information provided by AMCA, LDA estimates that approximately another 4,000 patients may have had their names, addresses, phone numbers, dates of birth, dates of service, balance information and treatment provider information impacted by this incident.  For these patients, credit card and banking information is not affected. The impact of this incident is limited to laboratory services provided to patients in the United States whose accounts were referred for debt collection.

Individuals with questions about this incident or questions about precautionary steps they can take may call 833-300-6928 for additional information.

Laboratory of Dermatopathology ADX, LLC takes the security of its patients’ information very seriously, including the security of data handled by vendors.  As a result of the investigation, LDA is no longer using AMCA for collection efforts.

The privacy and protection of patient information is a top priority.  LDA greatly appreciates the patience and loyalty of its patients as it works to respond

Category: HackHealth DataSubcontractorU.S.

Post navigation

← Equifax to Pay Around $700 Million to Resolve Data-Breach Probes
Hackers breach FSB contractor, expose Tor deanonymization project and more →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Nigerian National Sentenced To More Than Five Years For Hacking, Fraud, And Identity Theft Scheme
  • Data breach of patient info ends in firing of Miami hospital employee
  • Texas DOT investigates breach of crash report records, sends notification letters
  • PowerSchool hacker pleads guilty, released on personal recognizance bond
  • Rewards for Justice offers $10M reward for info on RedLine developer or RedLine’s use by foreign governments
  • New evidence links long-running hacking group to Indian government
  • Zaporizhzhia Cyber ​​Police Exposes Hacker Who Caused Millions in Losses to Victims by Mining Cryptocurrency
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Google: Hackers target Salesforce accounts in data extortion attacks
  • The US Grid Attack Looming on the Horizon

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • California county accused of using drones to spy on residents
  • How the FBI Sought a Warrant to Search Instagram of Columbia Student Protesters
  • Germany fines Vodafone $51 million for privacy, security breaches
  • Malaysia enacts data sharing rules for public sector
  • U.S. Enacts Take It Down Act
  • 23andMe Bankruptcy Judge Ponders Trump Bill’s Injunction Impact
  • Hell No: The ODNI Wants to Make it Easier for the Government to Buy Your Data Without Warrant

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.