Marlboro-Chesterfield Pathology Data Breach Affects 235,911 Individuals
May 26, 2025
SafePay Ransomware Breach at Marlboro-Chesterfield Pathology Exposes Personal Data of over 235,000 Clients
The Marlboro-Chesterfield Pathology laboratory, based in North Carolina, experienced a significant data breach orchestrated by the SafePay ransomware group, affecting the personal information of approximately 235,000 individuals. The incident marks a serious security lapse for a facility that prides itself on providing advanced diagnostic services and technologies since its establishment in 1990.
The breach was detected on January 16, 2025, when unauthorized access was confirmed within the laboratory’s internal systems. Following the discovery, the organization promptly initiated an investigation and took measures to secure its network. The laboratory also contacted law enforcement agencies and attempted to eliminate the stolen personal data, indicating a ransomware attack had taken place. By March 31, 2025, the organization had identified individuals whose records were compromised as a result of the breach.
In an official statement about the incident, the lab disclosed, “On or around January 16, 2025, we detected unauthorized activity on our internal IT systems. Our investigation concluded that an unauthorized entity accessed our systems and acquired specific records. We mobilized third-party specialists to enhance our cybersecurity and assist in the investigation. We are coordinating with law enforcement, who were informed without delays that impacted notification.” The data breach notification further noted that affected personal information included names, addresses, birth dates, information on medical treatments, and health insurance details, encompassing policy numbers. While the stolen information varied by individual, the organization emphasized that, to date, there have been no reports of identity theft arising from the breach.
The organization reinforced its commitment to cybersecurity by immediately fortifying its defenses, engaging forensic experts, and ensuring that their internal systems are secured against future attacks. Additionally, the incident has been reported to the U.S. Department of Health and Human Services (HHS), confirming that the breach involved 235,911 affected individuals.
While no entries have surfaced on the ransomware group’s leak site regarding this healthcare organization, the situation serves as a stark reminder of the growing risks posed by ransomware attacks, especially in the healthcare sector. Considering the methodologies associated with such incidents, tactics likely employed in this breach may include initial access gained through phishing or exploiting vulnerabilities, alongside techniques for persistence and privilege escalation within the affected systems.
As businesses increasingly transition into digital frameworks, they must be vigilant against potential cybersecurity threats. Those affected by this breach can follow security updates from Marlboro-Chesterfield Pathology, as they continue to monitor and manage the situation proactively.
For real-time updates on cybersecurity incidents, connect with me on Twitter: @securityaffairs and follow on Facebook and Mastodon.
(SecurityAffairs – hacking, data breach)
