Cyber Incident Victim: Bayview Dental

On May 28, 2019, Bayview Dental, a Minnesota-based dental practice, detected unusual activity on its servers, prompting an immediate internal investigation supported by forensic experts. The investigation aimed to determine the nature and scope of the incident, though initial findings did not immediately confirm unauthorized access. Over five weeks later, on July 4, 2019, the forensic analysis revealed that an external unauthorized actor had potentially gained access to the servers during the period of unusual activity. While Bayview could not confirm whether any data was actually exfiltrated or viewed by the attacker, the compromise created a risk of exposure for sensitive patient information stored on the affected systems. The practice secured the compromised servers upon identifying the potential breach and initiated efforts to implement additional technical safeguards to prevent recurrence. No evidence suggested attempted or actual misuse of patient data at the time of disclosure.

The investigation determined that the potentially exposed information included patient names, addresses, phone numbers, dates of birth, dental insurance details, medical and dental history records, and in some cases, Social Security numbers. Bayview issued notifications to affected patients on August 13, 2019, advising them of the incident and offering 12 months of complimentary credit monitoring and identity restoration services through Kroll. The practice emphasized ongoing employee training initiatives related to data security and privacy protocols as part of its response. Operational impacts included temporary disruption to server functionality during containment, though the notice did not specify the duration or broader clinical consequences. Patients were directed to a dedicated call center for inquiries but received no confirmation of data misuse beyond the initial exposure risk.