What Happened
In January 2026, Pecan Tree Dental disclosed a ransomware attack affecting 13,300 individuals. The Sinobi ransomware group has been linked to the incident.
The compromised data reportedly includes health data. HIPAA breach notification requirements apply.
Timeline
- January 2026 — Pecan Tree Dental discloses ransomware attack by Sinobi affecting 13,300 individuals
Threat Actor Profile
Sinobi is a lesser-known ransomware group that has been observed targeting small healthcare practices, where security resources are typically limited.
Impact and Risk Assessment
For Individuals
13,300 patients had their dental health data exposed, potentially including treatment records and insurance information.
For Organisations
Small dental practices face proportionally higher impact from ransomware, as the operational and financial costs of response can be devastating for a small business.
Regulatory Context
HIPAA breach notification requirements apply. Small healthcare practices are not exempt from HIPAA compliance obligations.
What Should You Do?
For Individuals
- If you are a patient of Pecan Tree Dental, monitor your explanation of benefits for signs of medical identity fraud.
For Security Professionals
- Small dental and healthcare practices should consider managed security services and cyber insurance to mitigate ransomware risk within their budget constraints.
Learnings and Recommendations
Dental practices are increasingly targeted by ransomware groups due to the sensitive health data they hold combined with typically limited security resources.