Menu
Browse

Cyber Incident Victim: Centers Lab NJ LLC

Date:

Aug 2025

Location:

United States of America

Summary

Centers Laboratory discovered an intrusion in its IT environment where threat actors gained limited access and exfiltrated personal and protected health information including names, dates of birth, Social Security numbers, driver’s license or state identification numbers, passport numbers, and health insurance and medical data. The breach affects over 540,000 individuals according to the Department of Health and Human Services tracker, and the attackers leaked more than 1.6 million files totaling 720 gigabytes. The intrusion was attributed to the WorldLeaks cybercrime group, which had listed the organization on its site and focuses on data theft and extortion after emerging from the shutdown of the Hunters International ransomware group, now listing over 170 victims.

CIA Posture Motives Tactics, Techniques & Procedures
Available to members 1 motive 0 techniques
Threat Actor Type Location
1 actor Available to members Available to members

Description

Centers Laboratory (Centers Lab NJ LLC), a New Jersey‑based provider of testing and laboratory services for healthcare organizations, discovered an intrusion in its IT environment in August 2025. The company reported that the breach was identified nearly one year before the July 2026 public disclosure, placing the discovery around mid‑2025. An investigation determined that threat actors obtained limited access to the network between August 9 and August 14, 2025. During this window the attackers exfiltrated a range of personal and protected health information.

Cyber Incident Image

The compromised data included names, dates of birth, Social Security numbers, driver’s license or state identification numbers, passport numbers, and health insurance and medical details. Centers Laboratory was subsequently named by the WorldLeaks cybercrime group, which posted the organization on its leak site in October 2025. WorldLeaks released more than 1.6 million files amounting to approximately 720 gigabytes that it claimed were taken from Centers Laboratory’s systems. The group, which emerged in 2025 after the shutdown of the Hunters International ransomware operation, has shifted from file‑encrypting malware to pure data theft and extortion.

According to the Department of Health and Human Services’ healthcare breach tracker, the incident affects 542,377 individuals. In response, Centers Laboratory notified the U.S. government of the breach and posted a notice on its website detailing the scope of the compromised information. The company’s disclosure indicated that the breach had been discovered nearly a year prior to the public announcement and that the leaked data had been made available by WorldLeaks. More than 170 organizations were listed on the WorldLeaks site at the time of the report.

Sources
Sources available to members
1 source