December 15, 2023 at 10:01AM
Delta Dental of California has notified almost seven million patients of a data breach. The breach involved unauthorized access through MOVEit software, leading to the exposure of personal data, including names, financial account numbers, and credit/debit card details. Impacted customers are offered 24 months of free credit monitoring and identity theft protection services.
Based on the meeting notes, the key takeaways are as follows:
– Delta Dental of California experienced a data breach that impacted almost seven million customers, exposing their personal data including names, financial account numbers, and credit/debit card numbers with security codes.
– The breach occurred due to unauthorized access by threat actors through the MOVEit file transfer software application, which was vulnerable to a zero-day SQL injection flaw (CVE-2023-34362).
– The company confirmed that unauthorized actors accessed and stole data from its systems between May 27 and May 30, 2023.
– Delta Dental is providing 24 months of free credit monitoring and identity theft protection services to impacted customers and advising them to be cautious with unsolicited communications, as their data may have been shared with phishing actors, scammers, and other cybercriminals.
– This data breach is currently the third largest MOVEit data breach, following those of Maximus and Welltok.
These takeaways summarize the main points and implications of the data breach for further action and communication within the company or to stakeholders.