Posted On August 8, 2022 Consumer Privacy & Data Breaches
On August 4, 2022, Molecular Pathology Laboratory Network, Inc. (“MPLN”) reported a data breach stemming from an incident in which an unauthorized party gained access to servers containing patients’ sensitive information. Based on an official filing from the company, the incident resulted in an unauthorized party being able to access patients’ names, Social Security numbers, financial account information, and contact information, as well as a significant amount of protected health information. After confirming that consumer data was leaked, MPLN began sending out data breach notification letters to all individuals who were impacted by the recent data security incident.
If you received a data breach notification, it is essential you understand what is at risk. The data breach lawyers at Console & Associates, P.C. are actively investigating the MPLN data breach on behalf of people whose information was exposed. As a part of this investigation, we are providing free consultations to anyone affected by the breach who is interested in learning more about the risks of identity theft, what they can do to protect themselves, and what their legal options may be to obtain compensation from Molecular Pathology Laboratory Network, Inc.
According to an official notice filed by the company, on December 17, 2021, Molecular Pathology Laboratory Network discovered what was, at the time, a potential cybersecurity threat after portions of the company’s network became inaccessible. In response, the company secured its systems and began working with third-party cybersecurity specialists to investigate the incident and determine what, if any, consumer data was affected.
The Molecular Pathology Laboratory Network investigation confirmed that an unauthorized party indeed had access to at least portions of its network. Further, the affected networks contained sensitive consumer information.
Upon discovering that sensitive consumer data was accessible to an unauthorized party, Molecular Pathology Laboratory Network then reviewed the affected files to determine what information was compromised and which consumers were impacted. Molecular Pathology Laboratory Network completed this review on July 6, 2022. While the breached information varies depending on the individual, it may include your name, address, date of birth, gender, phone number, email address, Social Security number, driver’s license number, financial account information, payment card information, diagnosis/treatment information, procedure type, provider name, prescription information, date of service, medical record number, patient account number, procedure code, health insurance information, and medical test results.
On August 4, 2022, Molecular Pathology Laboratory Network sent out data breach letters to all individuals whose information was compromised as a result of the recent data security incident.
Founded in 1989, Molecular Pathology Laboratory Network, Inc. is a specialty healthcare provider based in Maryville, Tennessee. MPLN provides a range of diagnostic services, including molecular diagnostics, specialty anatomic pathology, flow cytometry, fluorescence in situ hybridization, and cytogenetic testing. Molecular Pathology Laboratory Network employs more than 108 people and generates approximately $19 million in annual revenue.
At Console & Associates, P.C., our consumer privacy lawyers monitor all security and data breaches to help affected consumers pursue their legal remedies. We offer free consultations to victims of data breaches and can explain your rights in clear, understandable terms so you can make an informed decision about how to proceed with your case. If you’ve been affected by the MPLN data breach or any other data security incident, Console & Associates, P.C., will investigate your case at no charge and offer you thorough advice about how to most effectively proceed with your case. If you decide to bring a case, we only get paid if you do. If your claim is successful, any legal fees are either paid by the defendant or come out of the funds recovered from the defendant. If your claim doesn’t result in a recovery, you will pay nothing.
Below is a copy of the initial data breach letter issued by Molecular Pathology Laboratory Network, Inc. (the actual notice sent to consumers can be found here):
We are writing to inform you of a data security incident that may have involved your information as described below. Molecular Pathology Laboratory Network, Inc. (“MPLN”) provides molecular diagnostic services and takes the privacy and security of all information very seriously. While we have no evidence to suggest that any of the impacted information was misused during this incident, we are writing to inform you about the incident, our response, and steps you can take to help protect your information.
On December 17, 2021, we became aware of a computer network disruption that limited our ability to access certain systems. We immediately began working with our I.T. team and engaged third-party computer specialists to conduct an investigation to determine the nature and scope of the incident. As a result of a thorough investigation, we have discovered that certain data present on MPLN systems may have been subject to unauthorized access. Upon discovery, we performed a thorough and time intensive review to determine whether the impacted data contained any sensitive information, and if so, to whom the information relates. On July 6, 2022, this review was completed and we discovered that your information was contained within the potentially impacted data set.
The information contained in the impacted data included your name in combination with your [Redacted].
Upon learning of this incident, we took the steps described above to address this incident. We have also implemented additional technical safeguards to enhance the security of information in our possession and prevent similar incidents from happening in the future. Additionally, we are offering you complimentary credit monitoring and identity protection services. Due to privacy laws, we cannot register you directly. Additional information regarding how to enroll in the complimentary identity monitoring service is enclosed.
We recommend that you remain vigilant in regularly reviewing and monitoring all of your account statements and explanation of benefits forms for suspicious activity and to detect errors. If you discover any suspicious or unusual activity on your accounts, please promptly contact your financial institution or company. Additionally, you can enroll to receive the complimentary credit monitoring service we are making available to you.
We have established a dedicated assistance line to address any questions you may have which can be reached at 1-833-423-2978, Monday through Friday, 8 a.m. to 8 p.m. Central Time, excluding major U.S. holidays. You may also contact Molecular Pathology Laboratory Network, Inc. by mail at 250 E. Broadway, Maryville, TN 37804. The security of information is of the utmost importance to us, and we will continue to take steps to protect information in our care.