When was the Precision Endodontics cybersecurity incident discovered?

The cybersecurity incident was discovered on June 10, 2025. The dental practice detected unauthorized access to its email systems on this date.

What types of patient information were exposed in the Precision Endodontics breach?

The exposed data includes patient first and last names, email addresses from contact databases, patient portal usernames and passwords for some individuals, and contact list information spanning prior patients and business contacts.

How many patients were affected by the Precision Endodontics data breach?

The number of affected individuals has not been disclosed by Precision Endodontics of Raleigh. The practice has not provided specific figures on how many patients had their information compromised in the incident.

Has Precision Endodontics disclosed how the initial email compromise occurred?

No, the nature of the initial email account compromise has not been disclosed. The dental practice has not provided details about how the attackers originally gained access to their email systems.

Were patient portal credentials compromised in the Precision Endodontics incident?

Yes, patient portal usernames and passwords for some individuals were compromised in the breach. This means that some patients' login credentials for accessing their dental records online may have been exposed to unauthorized parties.

Should patients be concerned about phishing attacks following this Precision Endodontics breach?

Yes, patients should be particularly vigilant about phishing attacks. The attackers initiated a phishing campaign targeting patients from the compromised contact databases, meaning affected individuals may receive fraudulent emails that appear to be from the dental practice or related entities.

Who should patients contact for information about the Precision Endodontics data breach?

The practice has designated David J. Shannon at djshannon@mdwcg.com as the primary contact for inquiries related to the data breach. This indicates that external legal or consulting support is being used to manage the incident response and patient communications.

What should patients do if they believe they were affected by the Precision Endodontics breach?

Patients should be vigilant for suspicious communications, particularly phishing emails. They should also consider changing their patient portal passwords if they had online access to their dental records, and contact David J. Shannon at djshannon@mdwcg.com for specific information about their involvement in the breach.

Is Precision Endodontics handling the breach response internally?

No, the designation of David J. Shannon at djshannon@mdwcg.com as the primary contact indicates that Precision Endodontics is using external legal or consulting support to manage the incident response and patient communications rather than handling everything internally.

What types of contact information were compromised in the Precision Endodontics incident?

The compromised contact information includes patient email addresses from contact databases and contact list information spanning both prior patients and business contacts. This broad exposure affects not just current patients but also former patients and business associates of the dental practice.

Incident

North Carolina Endodontic practice hit by email compromise and phishing, exposing patient data

published: Aug. 7, 2025

Learn More

Precision Endodontics of Raleigh, a dental practice in North Carolina, is reporting a cybersecurity incident involving unauthorized access to its email systems and the compromise of patient information.

The incident, discovered on June 10, 2025, resulted in the breach of patient contact lists and portal credentials. Once inside the email system, the attackers conducted reconnaissance of the practice's contact databases and initiated a phishing campaign targeting patients from the contact databases.

Exposed data include:

Patient first and last names
Email addresses from contact databases
Patient portal usernames and passwords for some individuals
Contact list information spanning prior patients and business contacts

The number of affected individuals and the nature of the initial email account compromise have not been disclosed.

The practice has designated David J. Shannon at djshannon@mdwcg.com as the primary contact for inquiries related to the data breach, indicating that external legal or consulting support is used to manage the incident response and patient communications.

North Carolina Endodontic practice hit by email compromise and phishing, exposing patient data

Read More
Palomar Health Medical Group is reporting potential cyberattack
Parathon by JDA eHealth Systems reports data breach
Georgia Urology reports data breach caused by compromised …
Greater Rochester Independent Practice Association reports MOVEit related …
Jefferson Cherry Hill hospital reports data breach, informs …