PerCSoft

PerCSoft operated as a provider of medical records backup solutions, primarily serving dental practices across the United States. The company, in a joint offering with The Digital Dental Record, marketed software designed to safeguard patient data by creating secure off-site backups. This service was positioned as a critical protective measure for small to medium-sized dental offices, a sector often lacking extensive internal IT resources. Their core business model relied on acting as a managed service provider, handling the storage and security of sensitive health information for a network of client practices. The scale of their operations was indicated by the "hundreds" of dental offices affected when their infrastructure was compromised, demonstrating a significant footprint within the niche dental software market. Their specialization lay in providing a compliance-friendly data protection service for a highly regulated healthcare vertical, positioning them as a trusted custodian for practices seeking to meet data retention and security standards.

The organization's operational profile was fundamentally defined by a major security incident in August 2019. Threat actors compromised PerCSoft's infrastructure to deploy REvil (Sodinokibi) ransomware, encrypting the backed-up data of its dental clients. This supply-chain attack occurred when the ransomware was pushed through the providers' systems to the connected dental offices, disrupting operations as practices returned from the weekend. The incident was notable for its scale and method, marking the third time REvil actors had targeted managed service providers to propagate ransomware widely. In response, the companies paid the ransom and distributed a decryption tool to victims, though the recovery process was reported as slow and incomplete for some. The event carried a profound irony, as the compromised backup service had been explicitly marketed to clients as a defense against precisely such data-loss scenarios. This breach underscored the critical vulnerability of the IT supply chain in the healthcare sector and highlighted PerCSoft's role as a high-value target for ransomware gangs seeking multiplicative impact through a single point of compromise.