360 Dental PC Data Breach Exposes Sensitive Patient Information for Over 11,000 Individuals
Shamis & Gentile P.A., a class action law firm specializing in data breach cases, is investigating a cybersecurity incident at 360 Dental PC, a dental practice based in Northeast Philadelphia. The breach, discovered on November 16, 2025, involved unauthorized access to the practice’s internal server, where an attacker locked files and potentially exposed sensitive patient data.
360 Dental PC, led by Dr. Mikhail Sitkovetskiy, serves patients across Northeast Philadelphia and surrounding neighborhoods, including Mayfair, Bustleton, and Oxford Circle. The breach was officially reported to the U.S. Department of Health and Human Services (HHS) on January 15, 2026, with 11,273 individuals confirmed as affected.
Exposed Information
The compromised data includes:
- Names, Social Security numbers, and dates of birth
- Addresses, phone numbers, and email addresses
- Patient account and chart numbers
- Dental and clinical records (treatment history, X-rays, diagnostic notes)
- Insurance provider details and member IDs
- Appointment information
Response and Legal Action
The firm is evaluating potential legal claims for affected individuals, who may be eligible for compensation. Those who received a breach notification or suspect their data was exposed are advised to monitor financial and insurance records for suspicious activity.
The incident highlights ongoing risks to healthcare providers handling sensitive patient information, underscoring the need for robust cybersecurity measures in the sector.
Source: https://www.claimdepot.com/investigations/360-dental-data-breach-2026
360 Dental Digilab cybersecurity rating report: https://www.rankiteo.com/company/360-dental-digilab
"id": "3601769469125",
"linkid": "360-dental-digilab",
"type": "Breach",
"date": "11/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '11,273',
'industry': 'Healthcare',
'location': 'Northeast Philadelphia, PA, USA',
'name': '360 Dental PC',
'type': 'Dental Practice'}],
'attack_vector': 'Unauthorized Access',
'customer_advisories': 'Affected individuals advised to monitor financial and '
'insurance records for suspicious activity.',
'data_breach': {'number_of_records_exposed': '11,273',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers',
'Dates of birth',
'Addresses',
'Phone numbers',
'Email addresses',
'Patient account and chart '
'numbers',
'Dental and clinical records',
'Insurance provider details',
'Member IDs',
'Appointment information']},
'date_detected': '2025-11-16',
'date_publicly_disclosed': '2026-01-15',
'description': 'A cybersecurity incident at 360 Dental PC involved '
'unauthorized access to the practice’s internal server, where '
'an attacker locked files and potentially exposed sensitive '
'patient data. The breach affected 11,273 individuals and '
'included personally identifiable information, dental records, '
'and insurance details.',
'impact': {'data_compromised': 'Sensitive patient information, including PII, '
'dental records, and insurance details',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential legal claims for compensation',
'systems_affected': 'Internal server'},
'investigation_status': 'Ongoing (legal investigation)',
'lessons_learned': 'Highlights ongoing risks to healthcare providers handling '
'sensitive patient information and the need for robust '
'cybersecurity measures.',
'ransomware': {'data_encryption': 'Files were locked'},
'recommendations': 'Affected individuals should monitor financial and '
'insurance records for suspicious activity.',
'references': [{'source': 'Shamis & Gentile P.A.'}],
'regulatory_compliance': {'legal_actions': 'Potential class action '
'investigation',
'regulations_violated': ['HIPAA'],
'regulatory_notifications': 'Reported to U.S. '
'Department of Health '
'and Human Services '
'(HHS)'},
'response': {'communication_strategy': 'Breach notification to affected '
'individuals',
'third_party_assistance': 'Shamis & Gentile P.A. (legal '
'investigation)'},
'title': '360 Dental PC Data Breach Exposes Sensitive Patient Information for '
'Over 11,000 Individuals',
'type': 'Data Breach'}