308/69 Tuesday, June 9, 2026
Reports indicate that the ShinyHunters cybercrime group has published 234 GB of data it claims to have stolen from DentaQuest, one of the largest dental benefits administrators in the United States, after ransom negotiations failed. The group had listed DentaQuest on its Tor-based data leak site in May before later releasing the data publicly. The incident may affect approximately 2.6 million individuals.
DentaQuest issued a statement confirming that the company is responding to a cybersecurity incident involving unauthorized access to parts of its network. The company stated that it had taken urgent action to secure its environment, contain the attack, and reduce the impact of the threat. At the same time, the company’s systems remain operational, with limited impact on business operations. DentaQuest is working with cybersecurity experts, digital forensic investigators, and law enforcement agencies to assess the scope of the incident and determine what information may have been exposed.
According to the data breach notification service Have I Been Pwned, the published data contains 2.6 million unique email addresses, along with names, phone numbers, addresses, and healthcare-related information. Some records also include Medicaid IDs. Much of the data appears in healthcare enrollment files and related member files. ShinyHunters is known for using a “pay or be leaked” extortion model to pressure victims, targeting large organizations and using social engineering techniques, particularly voice phishing, to steal credentials and access SaaS platforms such as Salesforce, Okta, and Microsoft 365 before using the stolen data for ransom demands or publishing it when negotiations fail.