Illinois-based Heartland Dental is notifying an undisclosed number of individuals that unauthorized access was gained to a limited portion of its IT systems, and that personal data may have been compromised.
How many victims? Undisclosed.
What type of personal information? Names, addresses, phone numbers, Social Security numbers, email addresses, certain information related to income and employment, education levels, school names, and certain information related to employment references.
What happened? Unauthorized access was gained to three databases containing data from old employment, discount plan, and patient financing applications.
What was the response? Heartland Dental contained the intrusion and is reinforcing its security technologies. All potentially impacted individuals are being notified, and offered a year of free identity protection services.
Details: The attacks compromised certain websites from March 31, 2013, to March 23, allowing access to the personal data.
Quote: “We have not received any complaints relating to the improper use of the compromised data,” a notification posted to the Heartland Dental website said.
Source: doj.nh.gov, “Heartland Dental,” June 2, 2015; heartland.com, “Cyber Attack FAQ,” June 2, 2015.