Cyber Incident Victim: Jax Spine & Pain Centers

On January 24, 2022, Jax Spine & Pain Centers experienced a ransomware attack targeting an inactive server storing patient files created prior to May 2018. The attackers compromised a compressed file containing demographic data, including names, addresses, dates of birth, and Social Security numbers for a limited number of individuals, but did not access clinical information or active patient records. The organization's primary cloud-based network server, which housed post-May 2018 patient files, remained unaffected during the incident. Internal security monitoring systems detected unauthorized activity, prompting immediate defensive actions that prevented server encryption. The compromised server was shut down upon discovery of the breach. Attackers issued a ransom threat to publish stolen files unless payment was made, though the notification did not specify whether any ransom was paid.

Jax Spine initiated an internal investigation and notified the FBI of the ransomware attack within hours of detection. The organization engaged third-party forensic investigators to assist in determining the attack's origin and full scope while collaborating with law enforcement agencies. Analysis confirmed the breach exclusively impacted historical records from inactive systems, with no evidence of data exfiltration beyond the pre-2018 demographic information. The clinic began reviewing the compromised data to identify affected individuals for direct notification, though this process remained ongoing at the time of their public statement. Patients treated at Jacksonville or St. Augustine locations prior to May 2018 were advised to monitor financial accounts for unauthorized activity and consider credit monitoring measures through major bureaus. The organization implemented additional security procedures to prevent recurrence but maintained uninterrupted clinical operations throughout the incident response.