DentaQuest Exposes Over 2.5 Million Accounts in ShinyHunters Extortion Attack
Published
Key Takeaways
- ShinyHunters Extortion: DentaQuest was targeted by ShinyHunters in May 2026, resulting in hundreds of gigabytes of data being publicly published.
- Data Exposure: The leaked dataset included approximately 2.5 million unique email addresses alongside names, addresses, and phone numbers.
- Healthcare Records: Exposed files included ASC X12 healthcare enrollment transaction sets, some containing Medicaid IDs, as well as member records.
The May DentaQuest data breach orchestrated by the ShinyHunters extortion group resulted in more than 2.5 million breached accounts, along with names, physical addresses, and phone numbers, added to breach notification service Have I Been Pwned (HIBP) on June 3, 2026. The inclusion of Medicaid IDs and government-issued IDs in the exposed dataset raises particular concern.
Scale and Scope of the Data Exposure
Much of the DentaQuest data appeared in healthcare enrollment files formatted as ASC X12 transaction sets (a structured data format commonly used in the healthcare industry), with some records containing Medicaid IDs.
Additional data surfaced in member records and related files. According to HIBP, the published data included 2,553,599 unique email addresses, along with:
- Dates of birth
- Email addresses
- Genders
- Government-issued IDs
- Health insurance information
- Names
- Phone numbers
- Physical addresses
ShinyHunters listed the company in late May and publicly released over 234GB of data allegedly obtained from DentaQuest's systems after the company reportedly failed to comply with the group's demands.
DentaQuest Official Response
DentaQuest acknowledged a "cybersecurity incident involving unauthorized access to a limited portion” of its network. The company stated that it had contained the attack and mitigated the threat, but it disclosed no further operational details in its public statement.
However, the announcement mentioned the firm is working with a leading cybersecurity expert, forensic investigators, and law enforcement authorities.
In other recent news, an Ultrahuman data breach exposed wellness data via unauthorized access to an internal analytics tool.
In May alone, ShinyHunters claimed a 4.9-million-email Charter data breach, a 7-Eleven intrusion, a Woflow incident, and breaches involving the Kemper Corporation, Ameriprise Financial, and Vimeo.
In March, ShinyHunters claimed a massive Salesforce breach that affected Snowflake, Okta, Sony, AMD, Lastpass, and Salesforce itself.
Related
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular
Get expert insights on threats, breaches, scams, and security trends — delivered every Monday.
Most Popular