According to sources, 7×7 Dental Implant & Oral Surgery Specialists of San Francisco (a Medical organization in California) was hit with a cyber attack. It was first reported on 2023-04-07.

If You're in California, You're at Increased Risk

Cybersecurity for Medical

Manage your organization’s attack surface with SecuLore’s 24/7 network monitoring services.

  • 24/7 Threat Monitoring

  • Automated & AI Threat Detection

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis

Source 1  |  2023-04-07

7×7 Dental Implant & Oral Surgery alleged victim of Abyss ransomware group

“A leak site called “Abyss” recently added 7×7 Dental Implant & Oral Surgery Specialists of San Francisco (7×7) to their site and claimed to have 114 GB of the dental practice’s files. A file tree showing 2,891 directories and 63,557 files was posted as proof of claim. Some of the filenames suggest business-related internal documents, while others are likely employee-related files. The bulk of the files appears to be patient-related. Most of these are image files in .jpg or .dcm format. Some .pdf files appear to be referral letters or reports. “

“Protected health information (PHI) appeared to be exposed in the file tree itself as filenames often incorporated patients’ first and last names with the date of service.  Other filenames contained an initial with a last name plus the service date. Using Google search and a small sample of less common names, DataBreaches was able to find people in the area with the same first and last names as in the file tree. 7 x 7 has yet to respond to DataBreaches’ website contact inquiry of March 30 or an email of April 5. There has been no confirmation from them, then, of any attack or that the file tree data is theirs. “

“Abyss’s site does not indicate whether they have given 7×7 a deadline for responding to avoid a data dump. Inspection of the file tree suggests that the data were likely exfiltrated on or after March 7, 2023, which was the most recent date of service in some filenames. In a matter of approximately three weeks then, Abyss exfiltrated data and then named the victim publicly to increase pressure on them. DataBreaches has no information on Abyss, but some sites refer to them as a ransomware group. Abyss does not have any contact info on their leak site. “

Guarding Against Ransomware

  • August 16, 2023

    Ransomware is on the Rise Again: Defense Against New Players

  • November 9, 2022

    Ransomware’s Hidden Costs: What You Need To Know

  • August 11, 2021

    How to Prevent and Respond to Ransomware Attacks

  • January 25, 2017

    How to Defend Public Safety from Ransomware

Cybersecurity for Critical Infrastructure

SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.

  • 24/7 Vulnerability & Threat Monitoring

  • Automated & AI Threat Detection

  • Specialized Threat Intelligence

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis