Avantic Medical Lab hit by ransomware attack, data breach
Learn More
Avantic Medical Lab, a clinical laboratory based in New Jersey, was hit by ransomware attack and a data breach claimed by the Everest group.
Avantic Medical Lab provides diagnostic testing and laboratory services to hospitals, physicians, and patients throughout New Jersey, New York, and the Pennsylvania Metro Area.
The incident was detected on July 3, 2025, when approximately 31 GB of patient files were leaked on the dark web .
Everest first added Avantic Medical Lab to its leak site on June 10, 2025 and added a one-week countdown and screenshots containing patient information as proof of the breach. Avantic did not make contact with the criminals so the gang leaked the full data set.
The compromised patient files appear to include data relating to blood draws, insurance responses, and other medical correspondence. The leaked data contains records from 2018 to 2023. The exposed data includes:
- Full names
- Home addresses
- Telephone numbers
- Dates of birth
- Social Security Numbers
- Medical record numbers
- Referring doctors' information
- Health insurance information and provider details
- Employer or group names
- Policy numbers and member IDs
- Claim IDs
- Blood draw dates and test types
- Diagnostic test results
- Medical histories
- Explanation of benefits
- Diagnoses
- Insurer correspondence
- Payment information and financial details
- Credit card information including expiration dates and CVV codes
The number of affected individuals has not been disclosed.
Avantic Medical Lab has not yet issued an official notice to patients regarding the data breach. The company is expected to work on identifying and notifying affected individuals with the breach details.
Patients who believe they may have been affected should monitor their financial accounts and credit reports, consider placing fraud alerts or credit freezes with major credit bureaus, and remain cautious of unsolicited communications requesting personal information.
