CBC reports:
A significant data breach has compromised the personal information of about 1.47 million Albertans, the Alberta Dental Service Corporation said Thursday.
In a statement, ADSC said certain data from public dental benefits programs it administers for the provincial government was implicated in a recent cybersecurity breach.
ADSC learned it was the victim of a ransomware attack and called in cybersecurity experts to assist with containment, remediation, and to conduct a comprehensive forensic investigation into the nature and extent of the incident.
Read more at CBC.
A webpage on the incident by ADSC explains:
Alberta Dental Service Corporation (“ADSC”) works in partnership with the Government of Alberta to administer dental benefits through the Dental Assistance for Seniors Program (DASP) and through Alberta’s Low-Income Health Benefits Program which includes Assured Income for the Severely Handicapped (AISH), Alberta Adult Health Benefit, Alberta Child Health Benefit and Income Supports. Through our relationship with the Government of Alberta, we have obtained and utilize some of your personal information to allow us to provide you with dental benefits. The Government of Alberta is the custodian of the personal health information in ADSC’s possession which was impacted by this incident.
Although ADSC does not name the ransomware group, they describe the incident as having discovered that the group was in their network from May 7 to July 9, accessing and exfiltrating data before deploying the malware on July 9, which is when ADSC first discovered the attack. The page also describes which groups are affected and provides additional information.
Those who have Quikcard health spending accounts have an additional webpage with information for them at https://www.quikcard.com/cyberincident/.