What should I do if I was affected by a data breach?

If you were affected by a data breach, you should immediately monitor your financial accounts, place a fraud alert or credit freeze with the major credit bureaus (Equifax, Experian, and TransUnion), change passwords for affected accounts, and consult a data breach lawyer to understand your legal rights and potential compensation options. Act quickly — statutes of limitations apply.

Can I receive financial compensation after a data breach?

Yes. Victims of data breaches may be eligible for financial compensation through class action lawsuits or individual claims. Recoverable damages can include identity theft losses, out-of-pocket expenses, lost time, and compensation for the ongoing risk of future harm. A free consultation with a data breach attorney can help determine your eligibility.

How long do I have to file a data breach lawsuit?

Statutes of limitations for data breach claims vary by state, typically ranging from one to three years from the date you discovered — or reasonably should have discovered — the breach. In some states, the clock starts from the breach date itself. Contact a data breach lawyer as soon as possible to preserve your rights.

Centers Laboratory Data Breach

What Happened?

According to Centers Laboratory’s notice, the company discovered suspicious activity within its systems on Aug. 25, 2025. An investigation determined that an unauthorized actor had gained limited access to and copied data from the company’s environment during a period between Aug. 9, 2025, and Aug. 14, 2025.

Following the discovery, Centers Laboratory launched an extensive review to determine what information was affected and identify the individuals whose records were involved.

The incident later drew additional attention when a threat actor known as Worldleaks allegedly posted claims on the Tor dark web network on Oct. 6, 2025. According to those claims, data purportedly taken from Centers Laboratory included patient test records, laboratory reports, employee information, diagnostic data and internal operational files.

Although dark web claims cannot always be independently verified, the company’s investigation confirmed that sensitive personal and medical information was exposed during the incident.

Who was affected?

Based on the information disclosed by Centers Laboratory, the affected individuals appear to include:

Patients whose laboratory testing records and healthcare information were stored by Centers Laboratory.
Potentially employees and staff members, as the dark web posting referenced employee and staff information.
Individuals whose records contained personal and health information maintained by the laboratory.

What Information Was Exposed?

The review conducted by Centers Laboratory determined that both personal information and healthcare-related information were compromised.

The exposed information may include:

Full names
Dates of birth
Social Security numbers
Driver’s license numbers
State identification card numbers
Passport numbers
Health insurance information
Medical information

Because the breach involved a combination of identity information and healthcare records, affected individuals may face heightened risks compared to breaches involving only basic contact information.

Cybercriminals often use stolen personal and medical records to commit identity theft, submit fraudulent insurance claims, obtain medical services under another person’s identity or conduct sophisticated phishing attacks.

What is Centers Laboratory's doing?

After discovering the incident, Centers Laboratory conducted a detailed investigation to understand the scope of the breach and determine which records were affected.

The company is encouraging affected individuals to remain vigilant and carefully monitor financial and healthcare-related accounts for signs of unauthorized activity.

Centers Laboratory specifically recommends:

Monitoring account statements for suspicious transactions
Reviewing Explanation of Benefits (EOB) statements from health insurers
Checking credit reports for unfamiliar accounts or inquiries
Reporting any suspected fraud immediately

To assist affected individuals, Centers Laboratory established a dedicated support line.

Individuals with questions regarding the incident may contact the company at:

Phone: 1-833-502-4681

Affected individuals may also write to:

Centers Lab NJ LLC
Attn: Privacy Office
85 Horse Hill Road
Cedar Knolls, NJ 07927

What can you do?

Anyone who receives a notification from Centers Laboratory should consider taking immediate action to protect their personal information.

Review Credit Reports

Obtain free credit reports from all three major credit bureaus and review them for suspicious accounts, inquiries or changes.

Consider a Credit Freeze

A credit freeze can help prevent criminals from opening new accounts in your name by restricting access to your credit file.

Monitor Financial Accounts

Review bank accounts, credit card statements and other financial accounts regularly for unauthorized activity.

Watch for Medical Identity Theft

Review insurance statements and medical records for services or treatments you did not receive.

Remain Alert for Phishing Attempts

Cybercriminals frequently use information obtained during data breaches to create convincing phishing emails, phone calls and text messages.

Avoid clicking on unexpected links or providing personal information to unknown callers.

Links for more information

Notice of Data Breach

Vermont Attorney General