Core Dental Health, based in Oak Ridge, Tennessee, has informed 2,349 patients of a data breach involving their protected health information. The breach occurred after abnormal activity was detected in the network by the company’s IT managed service provider in April 2024. The investigation revealed that unauthorized access began in mid-March 2024, with configuration changes made to the system.
Further analysis confirmed that sensitive data, such as patient names, dates of birth, and dental treatment histories, were exposed during the attack. The unauthorized individual accessed a data folder containing this information, heightening concerns about patient privacy. Core Dental Health has since taken steps to understand the full impact of the breach and secure its network.
The Federal Bureau of Investigation (FBI) was alerted, and a formal investigation is ongoing. Core Dental Health has enlisted a cybersecurity consultant to enhance its defenses and prevent future incidents. Despite the serious nature of the breach, there has been no evidence of misuse of the exposed data, but the organization remains vigilant.
As a precautionary measure, Core Dental Health has offered affected individuals complimentary credit monitoring and identity theft protection services. Individual notifications were mailed to the impacted patients on July 1, 2024, ensuring they are informed and can take necessary actions to protect their information. The organization is working diligently to strengthen its cybersecurity posture and restore patient trust.
