Cyber Incident Victim: Nationwide Laboratory Services

On May 19, 2021, Nationwide Laboratory Services, a Boca Raton-based clinical laboratory later acquired by Quest Diagnostics, detected a ransomware attack that encrypted files across its network, blocking access to critical systems. The organization immediately implemented containment measures and engaged a third-party cybersecurity firm to investigate the breach and assist with remediation. Forensic analysis confirmed by August 31, 2021, that attackers had infiltrated network segments containing protected health information, potentially compromising data including patient names, dates of birth, lab test results, medical record numbers, Medicare identifiers, and health insurance details. A subset of affected individuals had their Social Security numbers exposed, with the specific data types varying per patient. The breach report filed with the Department of Health and Human Services’ Office for Civil Rights indicated 33,437 individuals were potentially impacted.

While evidence suggested attackers may have exfiltrated limited files prior to ransomware deployment, no proof emerged indicating actual or intended misuse of patient data. As a precautionary measure, Nationwide Laboratory Services advised affected individuals to monitor accounts and insurance statements for fraudulent activity. The organization provided 12 months of complimentary credit monitoring to those whose Social Security numbers were exposed. The incident occurred during a period of corporate transition, coinciding with Nationwide’s acquisition by Quest Diagnostics in summer 2021. This timing aligned with FBI warnings about ransomware groups strategically targeting companies undergoing significant financial events like mergers and acquisitions, where exfiltrated data could be leveraged to pressure victims through threats of stock price manipulation or sensitive data disclosure.