Delta Dental Data Breach: What It Means for You
As a business owner, the last thing you want to hear is that your customers’ sensitive information has been compromised. Unfortunately, that’s precisely what happened to Delta Dental of California and its affiliates, who recently had to warn nearly seven million patients about a data breach that exposed their personal data.
What Happened?
Delta Dental of California, a dental insurance provider that covers 45 million people across 15 states, is part of the Delta Dental Plans Association. In a data breach notification, the company revealed that threat actors had gained unauthorized access to their systems through the MOVEit file transfer software application.
This software was vulnerable to a zero-day SQL injection flaw, known as CVE-2023-34362, which allowed for remote code execution. The infamous Clop ransomware gang leveraged this vulnerability to breach thousands of organizations worldwide.
When Did Delta Dental Discover the Breach?
Delta Dental of California first became aware of the compromise on June 1, 2023. After an internal investigation, they confirmed that unauthorized actors had accessed and stolen data from their systems between May 27 and May 30, 2023. A more in-depth investigation, completed on November 27, 2023, revealed the full extent of the security incident’s impact.
Who’s Affected?
So far, the data breach has impacted 6,928,932 customers of Delta Dental of California. The exposed data includes names, financial account numbers, and credit/debit card numbers with security codes. This makes it the third-largest MOVEit data breach, behind Maximus (11 million) and Welltok (8.5 million).
What Is Delta Dental Doing to Help?
To mitigate the risk for affected patients, Delta Dental of California is offering 24 months of free credit monitoring and identity theft protection services. They’ve provided details on how to enroll in these services in personal notices sent to impacted individuals.
How Can You Protect Yourself?
If you’re a customer of Delta Dental of California, it’s crucial to be cautious with unsolicited communications, as your data may have already been shared with phishing actors, scammers, and other cybercriminals. Always double-check the legitimacy of any email, text message, or phone call you receive, especially if it asks for personal information or urges you to take immediate action.
Don’t Let This Happen to Your Business
As a business owner, you can’t afford to take cybersecurity lightly. The Delta Dental of California case is a stark reminder of the consequences of not adequately protecting your customers’ data. The good news is that you don’t have to tackle this challenge alone.
At ZZ Servers, we’re here to help you safeguard your business from cyber threats. With our expertise in cybersecurity, we can help you identify potential vulnerabilities and implement best practices to keep your business and customers secure.
Don’t wait until it’s too late. Contact us today to learn how ZZ Servers can assist you in protecting your business from the ever-evolving landscape of cyber threats.
