"Such breaches make private, personal and financial information vulnerable to criminals, leading to potential identity theft and irreparable harm to their credit reports and financial futures", the senators wrote AMCA President Russell Fuchs.
OPKO itself stated that no laboratory results or diagnostic information were exposed to unauthorized parties.
Medical testing and medication firm Opko Health is now the third company to be impacted by a security breach at a third-party billing collections firm, bringing the total number of patients' data potentially exposed by the breach to over 20 million.
"We remain committed to our system's security, data privacy and the protection of personal information", AMCA said in a statement.
The unauthorized activity occurred over an eight-month time period, between August 1, 2018 and March 30, 2019, AMCA said.
AMCA's breached system included financial information such as credit card numbers and bank account information, medical information, and personal information such as Social Security numbers, according to Quest's SEC filing in which it detailed information that AMCA had provided.
- Quest Diagnostics, one of the nation's biggest clinical laboratories, warned that almost 12 million patients might be affected by a data breach that happened to a collections agency the clinic uses.
AMCA advised that AMCA's affected system includes information provided by BioReference that may have included patient name, date of birth, address, phone, date of service, provider, and balance information. The vendor has stated that it is presently investigating the incident.
Opko Health has not received a complete list of the affected customers and has not been able to verify the accuracy of the information AMCA provided, Reuters reports.
According to the SEC filing, BioReference Laboratories Inc collection requests to AMCA were terminated since October 2018, and the company also said that do not wish to proceed with any open applications and asked them to be ceased as well.
Another day in the healthc are industry, another big data breach.