Delta Dental of California experienced a data breach in May 2023, which was discovered on June 1, 2023. The breach resulted from a vulnerability in a widely-used software solution, leading to the theft of sensitive information from numerous individuals associated with the company.

How many accounts were compromised?

The breach impacted data related to approximately 7 million individuals.

What data was leaked?

The data exposed in the breach included names, addresses, Social Security numbers, driver's license numbers, financial account information, health insurance details, and health information.

How was Delta Dental California hacked?

The Clop hacking group exploited a zero-day vulnerability in Progress Software's MOVEit Transfer solution, leading to the data breach at Delta Dental of California. The attackers took advantage of an SQL injection vulnerability between May 27 and May 30, 2023, before a patch was applied. The specific malware involved in the breach remains unclear.

Delta Dental California's solution

In response to the hacking incident, Delta Dental of California took immediate action to investigate and mitigate potential damage. They collaborated with third-party cybersecurity experts and law enforcement agencies to analyze the breach and prevent further unauthorized access. Delta Dental of California also notified affected customers, offering credit monitoring services to help protect their personal information.

To prevent future incidents, the company implemented enhanced security measures, such as advanced encryption techniques, regular security audits, multi-factor authentication, and employee training on data security best practices. Additionally, they committed to staying updated with the latest security technologies and industry best practices to ensure the highest level of data protection for their customers. The specific details of the breach and the extent of the data compromised remain unclear.

How do I know if I was affected?

Delta Dental California has notified customers believed to be affected by the breach. If you're a Delta Dental California customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

• Change Your Passwords: Immediately update your passwords for all affected accounts. Make sure the new passwords are strong and unique, not previously used on any other platform.

• Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

• Enable Two-Factor Authentication (2FA): Activate 2FA on all affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

• Monitor Your Accounts: Keep an eye on your financial and personal accounts for any suspicious activity. Report any unauthorized transactions or changes to the appropriate institutions immediately.

For specific advice on Delta Dental California's data breach, please contact Delta Dental California's support.

Where can I go to learn more?

If you want to find more information on the Delta Dental California data breach, check out the following news articles:

• Notice of MOVEit Data Security Incident

• Delta Dental of California Data Breach: 7 Million Individuals Affected

• Delta Dental Says Data Breach Exposed 7 Million Customers