BALTIMORE (WJZ) — Maryland Attorney General Brian E. Frosh warns Marylanders their medical and other private information may have been compromised by a cyberattack against American Medical Collection Agency, a third party collection agency for laboratories, hospitals, physician groups, medical providers and others.

The known list of those impacted affects over 20 million patients. It includes:

READ MORE: COVID In Maryland: 786 New Cases As Hospitalizations, Positivity Rate Fall

The compromised information varies for each, but includes some or all of the following:

  • Patient Name
  • Date of Birth
  • Address
  • Phone Number
  • Date of Service
  • Provider
  • Balance Information
  • Payment Card Information
  • Bank Account Information
  • Social Security Number
  • Lab Test Performed

AMCA’s payment system was compromised on August 1, 2018, according to the release, and remained vulnerable through March 30, 2019.

READ MORE: National Guard Protecting U.S. Capitol Served 'Raw, Moldy Food,' Some With Metal Shavings, Report Says

AMCA has begun to send out written notices to consumers whose credit card number, social security number or lab test order information may have been accessed.

Maryland Attorney General Frosh warns consumers to carefully review their financial and medical accounts regularly for suspicious activity and immediately report all suspicious or fraudulent charges to their financial institutions or health insurance providers.

“Massive data breaches like the one experienced by the AMCA are extremely alarming, especially considering the likelihood that personal, financial, and medical information may now be in the hands of thieves and scammers,” said Attorney General Frosh.  “I strongly urge consumers to take steps to ensure that their information and personal identity is protected.”

MORE NEWS: March 5 Marks 1 Year Since First COVID Cases Reported In Maryland, Gov. Hogan Declares Friday A Day Of Remembrance

Customers who believe they may have been affected should immediately take these steps to protect their information, he says: