What type of information was compromised in the 32 Pearls attack?

The exposed data includes full names, addresses, Social Security numbers, driver's licenses or Washington ID card numbers, full dates of birth, health insurance policy or ID numbers, and medical information.

32 Pearls is a dental care provider operating in Washington state that provides dental services to patients and maintains their personal and health information as part of their medical records.

When was the 32 Pearls breach reported to authorities?

The breach was reported to the authorities on June 21, 2025, approximately one month after the attack was discovered on May 22, 2025.

What type of cyberattack affected 32 Pearls?

32 Pearls was hit by a ransomware attack where a malicious actor gained unauthorized access to the company's computer systems and deployed ransomware to encrypt certain files between May 19 and May 22, 2025.

How long did attackers have access to 32 Pearls systems?

The investigation determined that the unauthorized party maintained access to 32 Pearls' systems between May 19 and May 22, 2025, during which they may have viewed or accessed sensitive files before deploying ransomware.

Has 32 Pearls notified affected patients?

Yes, 32 Pearls has sent out individual patient notifications to inform affected individuals about the ransomware attack and the potential compromise of their personal and health information.

What financial protection is 32 Pearls providing to victims?

32 Pearls is providing a $1 million insurance reimbursement policy for identity theft-related expenses as part of their 12-month complimentary identity protection program offered to all affected individuals.

Were Social Security numbers compromised in the 32 Pearls breach?

Yes, Social Security numbers were among the types of sensitive information that may have been viewed or accessed during the ransomware attack, along with other personal identifiers and medical information.

What monitoring services is 32 Pearls providing?

32 Pearls is providing credit monitoring and CyberScan monitoring to detect unauthorized use of personal information as part of their 12-month complimentary identity protection program for affected patients.

When was the 32 Pearls ransomware attack discovered?

32 Pearls discovered the ransomware attack on May 22, 2025, which was the same day the attack period ended. The malicious actor had maintained access to their systems since May 19, 2025.

Incident

32 Pearls dental practice hit by ransomware attack, exposes data of 23,550 people

Q: When did the 32 Pearls ransomware attack occur?

The ransomware attack occurred between May 19 and May 22, 2025. During this period, a malicious actor gained unauthorized access to 32 Pearls' computer systems and deployed ransomware to encrypt certain files. The company discovered the attack on May 22, 2025.

Q: How many patients were affected by the 32 Pearls breach?

The ransomware attack at 32 Pearls compromised personal and protected health information of 23,550 residents in Washington state.

published: July 23, 2025

Learn More

32 Pearls, a dental care provider operating in Washington state, is reporting a ransomware attack that compromised personal and protected health information of 23,550 residents.

The incident occurred between May 19 and May 22, 2025. During this period , a malicious actor gained unauthorized access to 32 Pearls' computer systems and deployed ransomware to encrypt certain files. The company discovered the attack on May 22, 2025.

The investigation determined that the unauthorized party may have viewed or accessed sensitive files during the period when they maintained access to the systems. Exposed data includes:

Full names
Addresses
Social Security numbers
Driver's licenses or Washington ID card numbers
Full dates of birth
Health insurance policy or ID numbers
Medical information

The breach was reported to the authorities on June 21, 2025. The company has sent out individual patient notifications.

32 Pearls is offering identity protection services to all affected individuals through a 12-month complimentary program. The protection package includes credit monitoring, CyberScan monitoring to detect unauthorized use of personal information, a $1 million insurance reimbursement policy for identity theft-related expenses, and fully managed identity theft recovery services.

32 Pearls dental practice hit by ransomware attack, exposes data of 23,550 people

Read More
Bladen County impacted by cyberattack, possibly data theft
The City of Coppell hit by cyberattack, RansomHub …
West Texas Gas reports data breach, exposing 56k
CarePro Health reports data breach, over 150k patients …
Doncaster care provider Hesley Group reports cyberattack exposing …