- MCNA Dental suffers a third data breach, courtesy of Everest Ransomware.
- Over one million patient records are at risk of exposure.
- MCNA has a prior history of ransomware attacks from Lockbit & Snatch.
Three times isn’t the charm. MCNA Dental has been targeted by yet another ransomware attack.
This time, it’s from the Everest Ransomware group, who claim to have access to over a million patient records.
MCNA, the largest dental insurer for the Medicaid and CHIP programs, has become a frequent target for cybercriminals.
Perhaps they should start providing cybersecurity coverage for themselves.
Everest, the Russian-speaking ransomware-as-a-service group, has given MCNA a 24-hour deadline to respond, or they will publish everything they have—patient records, internal documents, and so on.
It’s similar to a dental checkup, except instead of cavities, they discovered gaping security holes.
Earlier this year, they were targeted by LockBit and Snatch Ransomware, which exposed nearly nine million clients‘ sensitive information.
The impact was so severe that some users wondered if companies like MCNA purposefully maintained insecure systems to argue that “all data is already out there.”
Maybe there’s some twisted logic behind it, but it’s not earning them any trust.
This latest alleged hit only adds to MCNA Dental’s seemingly never-ending list of problems.
Previously, they refused to pay a $10 million ransom, and their files appeared on the dark web faster than you could say root canal.
They claimed they took steps to protect customers afterward, but the fact that we’re back speaks volumes—or rather, shouts. Loudly.
Subscribe to our newsletter
Everest hasn’t just targeted MCNA Dental; they’ve been on a healthcare spree since 2021, attacking everyone and everything from medical imaging providers to surgery centers.
According to the Department of Health and Human Services, Everest may be responsible for at least 20 health-related incidents in recent years.
They’ve even taken down major organizations like NASA and the Brazilian government.
For starters, it’s time for MCNA Dental and other healthcare organizations to improve their cybersecurity.
If businesses continue to ignore the warnings, they may find themselves at the mercy of cybercriminals willing to sink their teeth into those gaps.