Reno Dental Practice Hit by Ransomware Attack

by | Dec 29, 2017

A Reno-based dental practice in has been hit by a ransomware attack that denied access to dental records and images for five days.

The malicious software was installed, during a ransomware attack on October 30, on one computer and one server at the Wager Evans Dental .

Ransomware can be installed on a device in a variety of ways, although most commonly attacks are conducted using email. That seems to be the case with this attack, with the practice thinking that the ransomware was downloaded when an employee clicked on a malicious hyperlink or email attachment.

IT staff and other specialists restored the encrypted files and deleted the ransomware, although the process took approximately five days. Access to patient records and images was possible until November 4.

The files that were encrypted by the ransomware included sensitive information like as names, dates of birth, address details, diagnoses, treatment plans, pictures, health insurance details, and Social Security numbers.

A thorough investigation of the attack was completed and while it is possible that data could have been seen by the attackers, the only intention of the attack appears to be an effort to extort money from the practice.

The review into the breach is continuing, although so far there are no indications that the attackers saw or stole PHI. Since it cannot be determined with absolute certainty that data access/theft did not happen, all patients have been alerted of the attack, and out of an abundance of caution, those people have been offered credit monitoring services for one year without an expense.

The attack has resulted in the practice to enhance its security to prevent similar hacking incidents from occurring in the future. In the breach notification notification letter, Brian E. Evans, DDS, stated “We have retained security experts and made significant upgrades to our network and computer security.

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.


Please enable JavaScript in your browser to complete this form.

Patrick Kennedy

Patrick Kennedy is a highly accomplished journalist and editor with nearly two decades of experience in the field. With expertise in writing and editing content, Patrick has made significant contributions to various publications and organizations. Over the course of his career, Patrick has successfully managed teams of writers, overseeing the production of high-quality content and ensuring its adherence to professional standards. His exceptional leadership skills, combined with his deep understanding of journalistic principles, have allowed him to create cohesive and engaging narratives that resonate with readers. A notable area of specialization for Patrick lies in compliance, particularly in relation to HIPAA (Health Insurance Portability and Accountability Act). He has authored numerous articles delving into the complexities of compliance and its implications for various industries. Patrick's comprehensive understanding of HIPAA regulations has positioned him as a go-to expert, sought after for his insights and expertise in this field. Patrick's bachelors degree is from the University of Limerick and his master's degree in journalism is from Dublin City University. You can contact Patrick through his LinkedIn profile:

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.

Comprehensive HIPAA Training

Used in 1000+ Healthcare Organizations and 100+ Universities

    Full Course - Immediate Access

    Privacy Policy