Dental insurance giant Delta Dental of California known for providing dental insurance to over 85 million people across the USA, has fallen victim to a significant data breach, impacting more than 6.9 million individuals. The breach was a result of the Progress MOVEit hacking incident, where the Cl0p ransomware gang exploited a vulnerability in the MOVEit Transfer managed file transfer application back in May of 2023.
This data breach shows the importance for businesses to recognize that securing not just their own systems but also third-party entities is key to protecting sensitive information.
Delta Dental was among the numerous clients impacted by the breach that occurred on MOVEit’s file transfer software between May 27th and May 30th, an incident that came to their attention only on June 1st. The personal information compromised includes names, addresses, Social Security numbers, passport numbers, driver’s license numbers, financial account details, tax identification numbers, and health insurance and individuals health information.
The insurance company took steps to contain and remediate the incident, discovering the full extent of the breach on November 27, 2023. The affected individuals are being urged to remain vigilant for any suspicious activity on their accounts, and were offered free identity monitoring services.
The breach stands out due to its scale, making it the third-largest healthcare MOVEit-related breach reported, behind Maximus Inc. (11 million) and Welltok (8.5 million).
The Delta Dental breach emphasizes the need for advanced cyber risk management. By leveraging Sling, organizations can benefit from a proactive cybersecurity approach. Sling combines extensive Darknet knowledge with expert-driven threat intelligence, enabling customers to enhance their cybersecurity posture over time. Sling’s approach not only addresses vulnerabilities but also helps organizations stand strong against constantly changing cybersecurity threats.