Navesink Rehab Data Breach Investigation

The data breach lawyers at The Lyon Firm are investigating a cyberattack on Navesink Rehab, a multidisciplinary rehabilitation center based in Red Bank, New Jersey. The data breach was announced on the BLACKLOCK ransomware group’s dark web leak site hosted on the Tor network in June. Contact our attorney to learn more and to discuss taking legal action. We represent plaintiffs nationwide and we have settled numerous data privacy cases on behalf of our clients.

What happened at Navesink Rehab?

The company has not yet confirmed the breach, but according to BLACKLOCK, they successfully infiltrated Navesink Rehab’s systems, exfiltrated sensitive data, and have threatened to publish the stolen information if demands are not met.

The number of affected individuals has not been disclosed, but in similar attacks both personally identifiable information (PII) and protected health information (PHI) may have been compromised. This could include patient names, addresses, dates of birth, SSNs, medical records, insurance details, treatment histories, and other health data.

It is unclear whether any data has been released or if Navesink Rehab has responded to the alleged ransom demand. Additional details may emerge soon and could be posted on the Navesink Rehab website or on state attorneys general office websites.

Ransomware attacks have become a growing threat, often resulting in severe data breaches for individuals. These attacks involve malicious software that encrypts a victim’s files, making them inaccessible until a ransom is paid. However, the damage frequently extends beyond the immediate loss of data.

When attackers deploy ransomware, they typically gain unauthorized access to a victim’s system. This access can expose sensitive personal information, such as financial records, private communications, or identity details. Even if the ransom is paid, there’s no guarantee the data will be fully restored, and the attackers may still misuse or sell the stolen information.