Central Jersey Medical Center, a federally qualified health center in Perth Amboy, New Jersey, suffered a ransomware attack on August 25, where a threat actor gained access to its dental servers and encrypted files on its IT network. The breach exposed sensitive personal and health data, including names, dates of birth, addresses, Social Security numbers, health insurance details, dental records, treatment histories, and billing information. While the electronic medical record system and financial accounts remained unaffected, the incident compromised data of an undisclosed number of individuals, including students and adults served by its school-based health centers in Newark. The organization engaged external cybersecurity experts to investigate, secure the network, and strengthen safeguards. No confirmation was provided on data exfiltration, ransom payment, or the responsible cybercriminal group. The breach highlights the vulnerability of under-resourced healthcare providers to ransomware attacks, risking long-term reputational and operational damage.
Source: https://www.bankinfosecurity.com/federally-qualified-health-center-reports-ransomware-breach-a-29950
TPRM report: https://www.rankiteo.com/company/centraljerseymedicalcenter
"id": "cen5303453110725",
"linkid": "centraljerseymedicalcenter",
"type": "Ransomware",
"date": "8/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Perth Amboy, New Jersey, USA',
'name': 'Central Jersey Medical Center (CJMC)',
'type': 'Federally Qualified Health Center (FQHC)'}],
'attack_vector': 'Access to dental servers',
'customer_advisories': ['Breach notification letters to affected individuals'],
'data_breach': {'data_encryption': 'Yes (ransomware encryption of files)',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High (includes SSN, health, and '
'financial data)',
'type_of_data_compromised': ['Personal Identifiable '
'Information (PII)',
'Protected Health Information '
'(PHI)',
'Dental records',
'Billing information']},
'date_detected': '2024-08-25',
'description': 'Central Jersey Medical Center, a federally qualified health '
'center based in Perth Amboy, New Jersey, experienced a '
'ransomware attack in August 2024. The threat actor gained '
'access to its dental servers, encrypting files on its IT '
'network. Potentially compromised information includes names, '
'dates of birth, addresses, Social Security numbers, dental '
'records, health insurance details, and billing information. '
'The medical center engaged outside cybersecurity experts to '
'assist in response and enhance security measures. No '
'confirmation was provided on data exfiltration, ransom '
'payment, or the cybercriminal gang responsible.',
'impact': {'data_compromised': ['Name',
'Date of birth',
'Address',
'Telephone number',
'Email address',
'Race or ethnicity',
'Social Security number',
'Dental record number',
'Health insurance information',
'Dental diagnoses',
'Treatment history',
'Billing information'],
'identity_theft_risk': 'High (PII and health data exposed)',
'payment_information_risk': 'None (payment systems unaffected)',
'systems_affected': ['Dental servers',
'IT network (file encryption)']},
'initial_access_broker': {'entry_point': 'Dental servers',
'high_value_targets': ['Patient PII/PHI',
'Dental records']},
'investigation_status': 'Ongoing (external cybersecurity experts engaged)',
'lessons_learned': 'Federally qualified health centers (FQHCs) are vulnerable '
'to cyberattacks due to limited cybersecurity resources. '
'Investment in robust cybersecurity infrastructure, '
'workforce training, and partnerships with cybersecurity '
'experts is critical for underserved healthcare providers.',
'post_incident_analysis': {'corrective_actions': ['Engaged cybersecurity '
'experts for incident '
'response',
'Reviewing and '
'strengthening internal '
'procedures',
'Enhancing technical '
'safeguards to prevent '
'future incidents'],
'root_causes': ['Insufficient technical safeguards '
'(under-resourced cybersecurity)',
'Lack of segmentation between '
'dental servers and broader IT '
'network']},
'ransomware': {'data_encryption': True},
'recommendations': ['Enhance cybersecurity infrastructure for FQHCs with '
'government and nonprofit support.',
'Implement regular security audits and employee training '
'programs.',
'Develop incident response plans tailored to healthcare '
'data breaches.',
'Prioritize segmentation of critical systems (e.g., EMR '
'vs. dental servers).'],
'references': [{'source': 'Information Security Media Group (ISMG)'},
{'source': 'Central Jersey Medical Center Breach Notice'},
{'source': 'HHS HIPAA Breach Reporting Tool',
'url': 'https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf'}],
'regulatory_compliance': {'regulations_violated': ['Potential HIPAA '
'violations (under '
'investigation)'],
'regulatory_notifications': ['HHS Breach Reporting '
'Tool (pending due to '
'government '
'shutdown)']},
'response': {'communication_strategy': ['Breach notice on website',
'Individual notifications'],
'containment_measures': ['Network investigation',
'Securing the network'],
'enhanced_monitoring': ['Strengthened technical safeguards',
'Review of internal procedures'],
'incident_response_plan_activated': True,
'third_party_assistance': ['Cybersecurity experts '
'(unspecified)']},
'title': 'Central Jersey Medical Center Ransomware Breach',
'type': ['Ransomware', 'Data Breach']}