7×7 Dental Implant & Oral Surgery alleged victim of Abyss ransomware group
A leak site called “Abyss” recently added 7×7 Dental Implant & Oral Surgery Specialists of San Francisco (7×7) to their site and claimed to have 114 GB of the dental practice’s files. A file tree showing 2,891 directories and 63,557 files was posted as proof of claim.
Some of the filenames suggest business-related internal documents, while others are likely employee-related files. The bulk of the files appears to be patient-related. Most of these are image files in .jpg or .dcm format. Some .pdf files appear to be referral letters or reports.
Protected health information (PHI) appeared to be exposed in the file tree itself as filenames often incorporated patients’ first and last names with the date of service. Other filenames contained an initial with a last name plus the service date. Using Google search and a small sample of less common names, DataBreaches was able to find people in the area with the same first and last names as in the file tree.
7 x 7 has yet to respond to DataBreaches’ website contact inquiry of March 30 or an email of April 5. There has been no confirmation from them, then, of any attack or that the file tree data is theirs.
Abyss’s site does not indicate whether they have given 7×7 a deadline for responding to avoid a data dump. Inspection of the file tree suggests that the data were likely exfiltrated on or after March 7, 2023, which was the most recent date of service in some filenames. In a matter of approximately three weeks then, Abyss exfiltrated data and then named the victim publicly to increase pressure on them.
DataBreaches has no information on Abyss, but some sites refer to them as a ransomware group. Abyss does not have any contact info on their leak site.
This post will be updated if more information becomes available.