Open wide and say, “Aaaargh.” ADA sends malware to dental offices?

Oh, wonderful.

The American Dental Association (ADA) says it may have inadvertently mailed malware-laced USB thumb drives to thousands of dental offices nationwide.

The problem first came to light in a post on the DSL Reports Security Forum. DSLR member “Mike” from Pittsburgh got curious about the integrity of a USB drive that the ADA mailed to members to share updated “dental procedure codes” — codes that dental offices use to track procedures for billing and insurance purposes.

Read more from Brian Krebs on KrebsOnSecurity.com.

Update: On my. This was their follow-up (as seen on DSLReports):

ADA_malware

Another plastic surgery practice fell prey to a cyberattack that acquired patient photos and info
NY: Gloversville hit by ransomware attack, paid ransom
UN Cybercrime Convention to be signed in Hanoi to tackle global offences
ModMed revealed they were victims of a cyberattack in July. Then some data showed up for sale.
Confidence in ransomware recovery is high but actual success rates remain low
Protected health information of 462,000 members of Blue Cross Blue Shield of Montana involved in Conduent data breach

Related: