Connect with us

Hi, what are you looking for?


Data Breaches

1.5 Million Impacted by Ransomware Attack at Canadian Dental Service

The personal information of 1.5 million individuals was compromised in a ransomware attack at Alberta Dental Service Corporation (ADSC).

Canadian dental benefits administrator Alberta Dental Service Corporation (ADSC) has started informing roughly 1.47 million individuals that their personal information was compromised in a ransomware attack last month.

The intrusion was initially discovered on July 9, but the full scope of the data breach was determined only two weeks later.

In an incident notification, ADSC reveals that individuals enrolled in the Alberta Government’s Dental Assistance for Seniors Plan, the Alberta Government’s Low-Income Health Benefits Plans, and Quikcard were impacted.

Quikcard brokers and dental services providers that enrolled with ADSC to receive direct payment for eligible health claims were also impacted.

The attackers, ADSC says, had access to its network for more than two months before deploying file-encrypting malware. During this time, the attackers copied certain data from the compromised systems, including files containing personal and banking information.

“In total, approximately 1.47 million individuals were compromised. Of those, less than 7,300 records contained personal banking information. Only those who proactively provided their banking details to ADSC could have had that information accessed,” ADSC says.

Potentially compromised information, the organization says, varies depending on the benefits plan, but may include names, addresses, birth dates, government issued identification numbers, details of dental benefits claims, personal bank account numbers, corporate emails, and corporate bank accounts.

Advertisement. Scroll to continue reading.

ADSC says it was able to recover the affected systems and data with minimal impact to its operations.

The incident notification and accompanying FAQ suggest that the organization was in contact with the attackers and that a ransom was paid.

“ADSC has taken steps to ensure that any personal or corporate information which was accessed or copied from its systems as a result of this incident has been deleted and protected against fraudulent misuse,” ADSC says.

While the organization does not provide specific details on the ransomware gang behind the attack, IT World Canada claims that ADSC president Lyle Best has confirmed that a ransom payment was made to the 8Base ransomware gang, which provided proof that the stolen data was deleted.

Best did not disclose the ransom amount that was paid, but reportedly said that the initial intrusion vector was a phishing email and that the organization was able to restore the encrypted data from backups.

Related: Colorado Health Agency Says 4 Million Impacted by MOVEit Hack

Related: Personal Information of 11 Million Patients Stolen in Data Breach at HCA Healthcare

Related: Apria Healthcare Notifying 2 Million People of Years-Old Data Breaches

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Data Breaches

OpenAI has confirmed a ChatGPT data breach on the same day a security firm reported seeing the use of a component affected by an...


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...


A SaaS ransomware attack against a company’s Sharepoint Online was done without using a compromised endpoint.


Several major organizations are confirming impact from the latest zero-day exploits hitting Fortra's GoAnywhere software.

Data Breaches

A group of hackers has leaked Atlassian employee records and floorplans, information that was obtained from third-party workplace platform Envoy.