Data Breach Hits US Dental Patients
A cyber-attack on the vendor of a network of dental practices may have exposed the data of tens of thousands of patients.
A cyber-criminal used a phishing attack to gain access to the computer systems of North American Dental Management between March 31 and April 1, 2021. Pittsburgh-based North American Dental Management provides administrative and technology support services for Professional Dental Alliance (PDA) offices.
Following the security breach, PDA notified patients that an unauthorized individual may have accessed some of their protected health information (PHI).
The information that may have been exposed was stored in email accounts that the attacker was able to breach.
"Professional Dental Alliance (‘PDA’) was recently notified that a few email accounts of its vendor, North American Dental Management, containing some limited patient information were accessed by an unauthorized person between March 31 and April 1, 2021, as the result of an email phishing incident," stated PDA affiliate Grove Dental Associates in a data breach notice published on its website.
"At this time, the identity of some individuals is known, but the vendor’s investigation is ongoing."
After discovering the breach, North American Dental Management took steps to secure the