Millions of top US dental firm customers have data leaked after ransomware attack - what to do if you’re affected

Nearly nine million MCNA Dental customers affected

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

Personally identifiable sensitive data of almost nine million Americans has been leaked online following aransomwareattack against Managed Care of North America (MCNA) Dental.

The organization, which is one of the largest government-sponsored dental care and oral health insurance providers in the country, filed a notification with the Office of the Maine Attorney General detailing its findings.

In the week during which they had access to the target endpoints, the threat actors stole full names, postal addresses, dates of birth, phone numbers, email addresses, Social Security numbers, Driver’s license numbers, government-issued ID numbers, health insurance plans, teeth care plans, and bills and other insurance claims.

A million-dollar demand

As perthe document, the organization spotted the intrusion on March 6, 2023, and after a detailed investigation, learned that the threat actors breached its network in late February this year.

In total, exactly 8,923,662 people were affected by the incident. The data could be used by threat actors to launch identity theft attacks, wire fraud, and more.

While the organization did not name the perpetrators, it wasn’t long before the LockBit ransomware group claimed the cyberattack and published the data on its leaks website. As per the usual practice, the group first published a sample, and claimed it had around 700GB of data to release, pending negotiations with MCNA.

Clop ransomware may have infected even more victims than previously thought>Saks Fifth Avenue becomes latest Clop ransomware victim>Check out the best malware protection right now

The ransom demand, the media reports, was $10 million.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

MCNA most likely did not cave in to the demands, as the entire database was leaked on April 7. Now, whoever wants can download the entire database for free.

In the meantime, the organization said it did what it could to fix the problem and improve the security of its systems so that similar incidents don’t happen again. It also offered affected individuals 12 months of free identity theft protection and credit monitoring services through IDX.

Via:BleepingComputer

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

This dangerous new malware is hitting Windows devices by hiding in games

Windows PCs targeted by new malware hitting a vulnerable driver

How to watch Gold Rush season 15 online: live stream new episodes with a free trial