ProSmile Holdings, LLC

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

ProSmile Holdings, LLC, a dental service organization based in New Jersey, experienced a significant data security incident that was first detected on July 7, 2022. The breach involved unauthorized access to the company’s email environment, potentially compromising sensitive personal and protected health information of an undetermined number of individuals. Despite becoming aware of suspicious activity in July 2022, it took until December 1, 2022, for ProSmile to be notified that numerous email accounts had been compromised. An investigation confirmed that the accessed information could include names, dates of birth, Social Security numbers, driver’s license or state identification card numbers, financial account numbers, payment card numbers, medical treatment information, diagnosis or clinical information, provider information, prescription information, and health insurance information[1][2][3].

The company engaged a third-party cybersecurity firm to investigate the breach and a vendor to review the affected files, a process completed by November 29, 2023. ProSmile began notifying affected individuals on December 22, 2023, about the breach and provided information on steps they could take to protect their information[1][3][4]. However, the delay in notification and the lack of clarity on the number of affected individuals have raised concerns and questions about the breach’s handling[2].

ProSmile operates over 80 locations across New Jersey, Pennsylvania, Virginia, and Maryland, employing more than 1,400 people[2][5]. The breach has prompted investigations by law firms and has highlighted the importance of robust data security measures to protect sensitive personal and health information[7][8].

Citations:

  1. https://www.prnewswire.com/news-releases/prosmile-holdings-llc-provides-notice-following-data-security-incident-302021973.html
  2. https://www.databreaches.net/prosmile-issues-breach-disclosure-that-creates-more-questions-than-it-answers/
  3. https://www.hipaajournal.com/prosmile-holdings-data-breach/
  4. https://www.dentistrytoday.com/prosmile-holdings-provides-notice-following-data-security-incident/
  5. https://www.jdsupra.com/legalnews/prosmile-notifies-patients-of-july-2022-4558679/
  6. https://www.darkhorsetech.com/blogs/prosmile-holdings-notifies-patients-about-july-2022-data-breach
  7. http://shublawyers.com/current-investigations/prosmile-data-breach-alert/
  8. https://www.turkestrauss.com/2023/12/27/prosmile-data-breach-investigation/
Breach Submission Date Mar 28, 2023
Converted Entity Name ProSmile Holdings, LLC
Converted Entity Type Business Associate
State NJ
Individuals Affected 39,674
Breach Type Hacking/IT Incident

Breach Information Location Email

Business Associate Present Yes