Theft of Member Data Reported in ADA Ransomware Attack

July 29, 2022

INCIDENT

ADA suffered a cyberattack that forced them to take affected systems offline. Online services were inaccessible, including the ADA Store, the ADA Catalog, MyADA, Meeting Registration, Dues pages, ADA CE Online, the ADA Credentialing Service, and the ADA Practice Transitions. As a result the cyberattack also affected state dental associations who rely on ADA's online services to register an account or pay dues, such as those in New York, Virginia, and Florida,

Black Basta has claimed responsibility for the attack, and soon after begun leaking approximately 2.8 GB of data, including W2 forms, NDAs, accounting spreadsheets, and information on ADA members, which the threat actors claimed to be 30% of the data stolen in the attack.

Incident Date

April 22, 2022

Estimated Cost


No cost values disclosed.

Type of Malware

No Malware identified

Threat Source