The records of nearly 9 million people have been published online following a LockBit ransomware attack on Managed Care of North America Inc.
The company, also known as MCNA Dental, is a leading provider of dental plans in the U.S., serving private employers, individuals and families through a range of Medicare, long-term and commercial plans. MCNA is also the largest dental insurer for government-sponsored Medicaid and Children’s Health Insurance Program programs.
The breach was first disclosed in a filing May 26 with the Office of the Maine Attorney General. The breach occurred between Feb. 26 and March 7, with the breach discovered on May 3 according to the filing, although a separate notice of data breach the same day claims that it was discovered on March 6.
The breach notice ticks the typical boxes: MCNA hired a third-party forensics team, in this case, ZeroFox Inc.-owned IDX. It discovered that “a criminal was able to see and take copies of some information in our computer system.”
Information stolen included names, addresses, dates of birth, phone numbers, emails, Social Security numbers, driver’s licenses and other government-issued ID numbers. Also…
