Data Breach: MCNA Reveals 8.9 Million Customers Impacted by Ransomware Attack - 1

Data Breach: MCNA Reveals 8.9 Million Customers Impacted by Ransomware Attack

  • Written by Shipra Sanganeria Cybersecurity & Tech Writer

Managed Care of North America (MCNA) Dental announced that it has experienced a data breach, where unknown hackers infiltrated its network and stole personal data of 8,923,662 customers.

  • First and last name, address, date of birth, phone number, email
  • Social Security number
  • Driver’s license number/other government-issued ID number
  • Health insurance details
  • Dental care records
  • Bills and insurance claims

Moreover, the notice submitted to the Maine Attorney General’s Office, stated that the breach also involved information of some parents, guardians, or guarantors (bill payers). It further went on to say, ‘’ Information which was seen and taken was not the same for everyone.’’

MCNA claims that they have taken appropriate remedial measures to mitigate the risk and deployed better security measures to avoid similar incidents in the future. It also contacted law enforcement authorities to avoid any misuse of stolen information. Additionally, MCNA is also offering 12 months free identity theft protection and credit monitoring service through IDX to affected customers.

The organization also stated that as it does not have contact information of all the affected customers, hence a substitute notice was issued on IDX website. The notice would be active for 90 days.

MCNA did not release any details about the threat actors, however, ransomware group LockBit claimed responsibility for the attack. On not being paid the ransom of $10 million, the gang published the 700GB stolen data on their website.

As both personal and financial data is now available to other threat actors, MCNA has advised affected customers to be cautious and protect themselves against phishing and identity theft attempts.

Android Malware Daam Has Data Theft & Ransomware Capabilities: CERT-In Issues Advisory - 2

Android Malware Daam Has Data Theft & Ransomware Capabilities: CERT-In Issues Advisory

  • Written by Shipra Sanganeria Cybersecurity & Tech Writer

Last week the Indian national cybersecurity agency – CERT-In, released an advisory related to the newly discovered malware ‘Daam’. This threat can bypass antivirus software, steal sensitive data, and deploy ransomware on victim’s devices. The advisory was released for Android phone users and is said to impact the best of the brands.

The malware was first identified in April 2023, by researchers of the Singapore-based cybersecurity company CloudSEK. ‘’ The malware was found to be communicating with various Android APK files, likely indicating the source of infection,’’ noted CloudSEK. The team also named three applications associated with this malicious APK file:

  • Psiphon Client for Android and Windows : a free VPN
  • Boulders : a mobile game
  • Currency Pro : a currency converter

These trojanized apps are free and available on various unauthorized third-party websites. This sophisticated malware uses various techniques to access private data such as recording phone and VoIP calls, including calls made from encrypted services like Hike and Whatsapp.

Daam can easily bypass security to steal any file from the phones, including both new and old contacts, names of Google accounts, financial information, SMS messages and browser bookmarks. It can also upload/ download files, hack the camera, capture screenshots and lock phones by accessing device password and pin. The stolen data is subsequently transmitted to the threat actor managed C2 servers.

Moreover, to encrypt files on the victim’s device, the malware is said to use ‘’AES algorithms present in the root directory and SD card.’’ Once encryption is complete, it leaves behind “.enc” files and “readme_now.txt”, which is believed to be a ransom note.

As Daam can easily bypass any antivirus program, CloudSEK and CERT-In have suggested few measures using which users can utilize to protect and secure their devices. For instance, download apps from legitimate sources, check app reviews, use strong antivirus, check URLs, verify app permissions, etc.

By following these practices, the user can not only safeguard against Daam but also other ransomware gangs who utilize threats like phishing and identity and data theft to coerce their victims.