A recent data breach at DentaQuest, a leading dental benefits administrator, has resulted in the compromise of sensitive information from 2.6 million accounts.
The breach was brought to public attention last month when the notorious extortion group ShinyHunters claimed to have accessed over 234 GB of data from the company and listed it on their data leak site.
After unsuccessful negotiations with DentaQuest, the threat actors made the stolen data public.
DentaQuest, which is a part of Sun Life, stands as one of the largest dental benefits administrators in the United States, offering dental insurance plans and provider networks for various programs and clients.
The company serves approximately 35 million customers across 50 states and collaborates with a network of 140,000 dentists and dental specialists.
On June 2, DentaQuest officially confirmed the breach on their website, stating that while the incident caused some disruption in customer service, their systems remained operational.
The company took immediate action to contain the attack and secure their environment upon discovery of the breach.
External cybersecurity experts were engaged to assist in the investigation and assessment of the compromised data.
Following the incident, data breach alerting service Have I Been Pwned (HIBP) analyzed the leaked data, revealing that it included records for 2.6 million accounts, exposing sensitive information such as email addresses, full names, phone numbers, government-issued IDs, health insurance details, genders, and dates of birth.
Although DentaQuest did not confirm the impact on their clients, HIBP confirmed the validity of the leaked data through various verification methods.
HIBP also noted that around 66% of the exposed records were previously identified in their database from other incidents affecting different organizations.
Individuals affected by the breach are advised to remain vigilant against potential social engineering and phishing attacks due to the increased risk posed by the leaked data.
Security teams report only 14% of successful attacks, leaving the majority undetected in your system. Discover how breach and attack simulation can strengthen your security defenses in the Picus whitepaper.
Download the whitepaper now to enhance your security posture.
EU Takes Action Against Instagram and Facebook for Violating Illegal Content Rules
Warning: Facebook Creators Face Monetization Loss for Stealing and Reposting Videos
Facebook’s New Look: A Blend of Instagram’s Style
Facebook Compliance: ICE-tracking Page Removed After US Government Intervention
Facebook and Instagram to Reduce Personalized Ads for European Users
InstaDub: Meta’s AI Translation Tool for Instagram Videos
Reclaim Your Account: Facebook and Instagram Launch New Hub for Account Recovery
Meta discontinues Messenger apps for Windows and macOS
Subscribe to our weekly newsletter below and never miss the latest News or an exclusive offer.
