Laboratory Services Cooperative (LSC) has released a statement informing it suffered a data breach where hackers stole sensitive information of roughly 1.6 million people from its systems. Although Planned Parenthood was not directly responsible for the data exposure this time, customers of the healthcare organization had their data exposed for a second time in 2024, following a RansomHub ransomware attack in August 2024. The organization published yesterday a notice of a security incident caused by a threat actor that breached its networks in October 2024 and stole data. Bill Toulas Bill Toulas is a tech writer and infosec news reporter with over a decade of experience working on various online publications, covering open-source, Linux, malware, data breach incidents, and hacks. LSC is a Seattle-based nonprofit organization that provides centralized laboratory services to its member affiliates, including select Planned Parenthood centers. It plays a crucial role within its niche, supporting organizations in the reproductive health services across more than 35 U.S. states, handling sensitive lab testing, billing, and personal data. LSC says the investigation into the security incident is ongoing and external cybersecurity experts also monitor the dark web for data leaks relating to the breach. The breach mainly affects individuals who had lab tests done through select Planned Parenthood centers that use the LSC for their testing. According to a filing submitted to the Maine's AG Office, the data breach impacts 1,600,000 people. While the organization can confirm which centers were impacted, validating impact on the level of individuals is not provided due to privacy reasons. Potentially affected individuals are encouraged to use the free credit monitoring and medical identity protection services covered by LSC for 12 or 24 months, depending on their state.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Fri, 11 Apr 2025 13:25:12 +0000