Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Quest Diagnostics

Quest Diagnostics Vendor Cyber Rating & Cyber Score

questdiagnostics.com

Quest Diagnostics (NYSE: DGX) empowers people to take action to improve health outcomes. Derived from the world's largest database of clinical lab results, our diagnostic insights reveal new avenues to identify and treat disease, inspire healthy behaviors and improve health care management. Quest annually serves one in three adult Americans and half the physicians and hospitals in the United States, and our 47,000 employees understand that, in the right hands and with the right context, our diagnostic insights can inspire actions that transform lives. The company offers physicians the broadest test menu (3,000+ tests), is a pioneer in developing innovative new tests, is the leader in cancer diagnostics, provides anatomic pathology (AP)


Quest Diagnostics A.I CyberSecurity Scoring

Quest Diagnostics
Company Information
Website:http://www.questdiagnostics.com
Employees number:31,274
Number of followers:354,140
NAICS:6215
Industry Type:Medical and Diagnostic Laboratories
Homepage:questdiagnostics.com
Quest Diagnostics Risk Score (AI oriented)
Between 650 and 699
logo
Quest DiagnosticsMedical and Diagnostic Laboratories
Updated:
04/06/2026
674/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Quest Diagnostics Global Score (TPRM)
xxxx
logo
Quest DiagnosticsMedical and Diagnostic Laboratories
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Quest Diagnostics
Quest DiagnosticsWeak
Current Score
674B (WEAK)
01000
6 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
680Before Incident
JUNE 2026
674Before Incident
MAY 2026
672Before Incident
APRIL 2026
671Before Incident
MARCH 2026
668Before Incident
FEBRUARY 2026
666Before Incident
JANUARY 2026
663Before Incident
DECEMBER 2025
660Before Incident
NOVEMBER 2025
658Before Incident
OCTOBER 2025
655Before Incident
SEPTEMBER 2025
653Before Incident
AUGUST 2025
650Before Incident
AUGUST 2024
668Before Incident
Breach
27 Aug 2024Quest Diagnostics
Quest Diagnostics, Incorporated

Quest Diagnostics Data Breach

611After Incident
CRITICAL-57
QUE257072725
The Maine Office of the Attorney General reported a data breach involving Quest Diagnostics on October 25, 2024. The breach, which was discovered on August 27, 2024, involved inadvertent disclosure of personal information and affected a total of 1,062 individuals, including 4 residents of Maine.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Personal Information
DATA BREACH
Type Of Data Compromised: Personal Information
NOVEMBER 2021
671Before Incident
Ransomware
01 Nov 2021Quest Diagnostics
Quest Diagnostics

Quest Diagnostics Data Breach

550After Incident
CRITICAL-121
QUE93731122
Quest Diagnostics suffered from a data breach that exposed 350,000 patients' protected health information. Before the attacker may have acquired or exfiltrated specific patient health information, the security team discovered the intrusion two days after the ransomware was distributed. The compromised data includes medical histories, test reports, CPT and diagnosis codes, and other data provided, as well as billing and further health data. The Quest investigated the incident and notified those affected by email.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
medical historiestest reportsCPT and diagnosis codesbilling and further health data
DATA BREACH
medical historiestest reportsCPT and diagnosis codesbilling and further health dataNumber Of Records Exposed: 350,000
OCTOBER 2021
724Before Incident
Breach
29 Oct 2021Quest Diagnostics
Quest Diagnostics

Quest Diagnostics Data Breach

671After Incident
HIGH-53
QUE049072425
The California Office of the Attorney General reported a data breach involving Quest Diagnostics on November 16, 2021. The breach occurred on October 29, 2021, due to an inadvertent email sent containing a spreadsheet with personal information of current and former employees. The information included names, Social Security Numbers, and employee ID numbers, with some individuals potentially having personal email addresses compromised.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
NamesSocial Security NumbersEmployee ID NumbersPersonal Email Addresses
DATA BREACH
NamesSocial Security NumbersEmployee ID NumbersPersonal Email AddressesSensitivity Of Data: HighSpreadsheet
AUGUST 2018
729Before Incident
Breach
01 Aug 2018Quest Diagnostics
Laboratory Corporation of America Holdings and Quest Diagnostics: Labcorp $35 Million Data Breach Class Action Settlement

Labcorp AMCA Data Breach Settlement

645After Incident
CRITICAL-84
LABQUE1780590997
Labcorp Agrees to $35 Million Settlement Over 2018–2019 AMCA Data Breach Laboratory Corporation of America Holdings (Labcorp) has agreed to a $35 million class action settlement to resolve claims stemming from a 2018–2019 cybersecurity incident involving its third-party billing vendor, American Medical Collection Agency (AMCA). The breach exposed the personal and health information of patients whose data Labcorp transmitted to AMCA between August 2018 and March 2019. ### Eligibility and Compensation Affected individuals may qualify for compensation if their data was compromised in the AMCA breach. Claimants can seek: - Up to $5,000 for documented out-of-pocket losses, including expenses related to identity theft, medical fraud, credit monitoring, legal services, and up to 10 hours of remedial time at $25/hour. - A $50 alternative cash payment for those without documented losses, though the final amount may adjust based on the number of valid claims. - Two years of free medical monitoring via CyEx Medical Shield Pro. ### Settlement Process and Deadlines Claims can be filed online or by mail to the settlement administrator, Kroll Settlement Administration, by September 3, 2026. Required documentation varies by claim type, with receipts or records needed for out-of-pocket losses. Payments will be distributed via electronic transfer or mailed check after final court approval. Key dates: - Opt-out deadline: July 27, 2026 - Final fairness hearing: August 20, 2026 - Claim filing deadline: September 3, 2026 ### Settlement Fund Allocation The $35 million fund will cover: - Up to $11.67 million in attorneys’ fees - $5,000 service awards for class representatives - Administrative costs, medical monitoring expenses, and remaining payouts to eligible claimants ### Background and Legal Context The lawsuit alleged Labcorp failed to adequately protect patient data shared with AMCA, whose systems were breached. Labcorp denies wrongdoing, stating the settlement avoids litigation costs while providing relief to affected individuals. The breach, disclosed in 2019, also impacted other AMCA clients, including Quest Diagnostics, which settled separately for $195 million in 2022. Payments will be issued after the court resolves any appeals and grants final approval.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Financial Loss: $35,000,000 (settlement amount)Data Compromised: Personal and health information of patientsBrand Reputation Impact: YesLegal Liabilities: Class action lawsuit settlementIdentity Theft Risk: Yes
DATA BREACH
Personal informationHealth informationSensitivity Of Data: HighPersonally Identifiable Information: Yes
NOVEMBER 2016
755Before Incident
Breach
26 Nov 2016Quest Diagnostics
Quest Diagnostics

Quest Diagnostics Data Breach

690After Incident
CRITICAL-65
QUE238072625
The California Office of the Attorney General reported a data breach involving Quest Diagnostics on December 12, 2016. The breach occurred on November 26, 2016, when an unauthorized third party accessed the MyQuest by Care360® internet application, compromising Protected Health Information (PHI) of approximately 34,000 patients, which included names, dates of birth, and lab results.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
NamesDates of BirthLab ResultsMyQuest by Care360® internet application
DATA BREACH
Protected Health Information (PHI)Sensitivity Of Data: HighNamesDates of Birth
NOVEMBER 2014
796Before Incident
Breach
17 Nov 2014Quest Diagnostics
Quest Diagnostics

Quest Diagnostics Data Breach

731After Incident
HIGH-65
QUE523072725
The California Office of the Attorney General reported a data breach involving Quest Diagnostics on December 19, 2014. The breach occurred on November 17, 2014, when an employee mistakenly sent personal information via secured email to outside parties. Approximately 34,000 individuals were affected, with compromised information including names, addresses, Social Security numbers, and dates of birth.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
namesaddressesSocial Security numbersdates of birth
DATA BREACH
namesaddressesSocial Security numbersdates of birthSensitivity Of Data: High

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Quest Diagnostics ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in June 2026 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Quest Diagnostics's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on Quest Diagnostics's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Quest Diagnostics ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Quest Diagnostics's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?