DentaQuest Data Breach: ShinyHunters Threatens to Leak Data, Company Confirms Investigation
DentaQuest, a major U.S. dental and vision insurance provider, was reportedly hit by a data breach, with cybercriminal group ShinyHunters claiming responsibility. ShinyHunters threatened to release stolen information on May 27, 2026, after failed ransom negotiations. DentaQuest confirmed a cybersecurity incident involving unauthorized access to a portion of its network and initiated an investigation. The leaked data, reportedly over 234 GB, included 2.6 million unique email addresses, names, addresses, phone numbers, government-issued IDs, health insurance information, genders, and dates of birth.
Signal context
First seen: May 27, 2026
Last updated: Jun 25, 2026
Status: Public signal
Key points
- ShinyHunters claimed responsibility for a cyberattack on DentaQuest.
- Threat to release stolen data on May 27, 2026, after failed ransom negotiations.
- DentaQuest confirmed a cybersecurity incident and launched an investigation.
Signal analysis
BetaThis analysis groups the signal by industry, likely incident action and impacted security area. It helps compare this signal with other published signals without treating the labels as final determinations.
Sector: Finance and Insurance
Likely country: Location not provided
Watch internet-facing systems, credential abuse and exploit activity.
- Source type: outside the affected organization
Impact area: Confidentiality
Likely asset: User or customer data
- 19 signals in the same sector
- 93 signals with the same likely impact area
- 2 signals linked to this organization/domain
External sources
DentaQuest Data Breach Reported; Attorneys Investigating - Class Action Lawsuitshttps://www.classaction.org/data-breach-lawsuits/dentaquest-may-2026Public source from classaction.org.
DentaQuest Data Breach - Have I Been Pwnedhttps://haveibeenpwned.com/Breach/DentaQuestPublic source from haveibeenpwned.com.
Related signals
Grouped by why the signal is relevant.
DentaQuest Data Breach Exposes 2.6 Million Accounts
DentaQuest, a U.S. dental benefits administrator and a subsidiary of Sun Life, suffered a data breach that was disclosed on June 8, 2026. The ShinyHunters extortion group claimed responsibility for leaking exfiltrated data, which included personal information from approximately 2.6 million accounts. The compromised data consisted of names, email addresses, government IDs, and health insurance details. ShinyHunters reportedly published over 230 gigabytes of this data after negotiations failed.
Risk Strategies Data Breach Exposes Social Security Numbers and Medical Information
Risk Strategies (RSC Insurance Brokerage Inc.) disclosed a data breach involving sensitive personal and medical information. All affected individuals had their names and Social Security numbers exposed, and for some, medical information, medical records, and health, dental, or vision insurance details were also compromised. 47 Massachusetts residents were identified as affected.
Melli Bank Affected by Cyberattacks in Iran
Melli Bank was among three major Iranian banks affected by a wave of cyberattacks reported on June 23, 2026. The incident prompted a temporary nationwide suspension of card-based services to prevent unauthorized access. This follows an earlier wave of disruptions in mid-June.
Saderat Bank Affected by Cyberattacks in Iran
Saderat Bank was among three major Iranian banks affected by a wave of cyberattacks reported on June 23, 2026. The incident prompted a temporary nationwide suspension of card-based services to prevent unauthorized access. This follows an earlier wave of disruptions in mid-June.
Tejarat Bank Affected by Cyberattacks in Iran
Tejarat Bank was among three major Iranian banks affected by a wave of cyberattacks reported on June 23, 2026. The incident prompted a temporary nationwide suspension of card-based services to prevent unauthorized access. This follows an earlier wave of disruptions in mid-June.
London Hydro Discloses Data Breach Affecting Customer Information
Canadian electricity provider London Hydro announced a data breach that potentially impacted the personal and account information of its customers. The exposed data may include names, addresses, email addresses, phone numbers, account and billing numbers, service addresses, pricing plans, contract dates, and meter numbers. The utility became aware of suspicious activity on a customer account on June 18, 2026, and an investigation determined a system vulnerability was exploited. No financial or other sensitive information like dates of birth or government IDs were compromised.