Gargle Leak Exposes Millions of Dental Patient Records

Cybersecurity researchers have uncovered a database online exposing the personal and protected health information of 2.7 million dental patients. The database was without password protection or additional security layers and was fully accessible to the public, compromising patient data.

The owner of the unsecured and vulnerable MongoDB database containing millions of dental patient records has not been confirmed. Cybersecurity news reports state that the owner of the database with the exposed data could be Gargle, a marketing company offers dental practice online management tools.

Leaked and exposed data included names, dates of birth, emails, addresses, phone numbers, gender, chart IDs, language preferences, billing information, and detailed appointment records including patient procedure information. The unprotected database with the exposed patient information was discovered on March 26, 2025.

It's possible Gargle did not have proper password protection in place for the specific database in question.

Gargle's response

Once Gargle was notified of the exposed database with patient information, the dataset was secured and no longer accessible. Gargle has not issued any comments or public announcement regarding this data leak that exposed both personal and protected health information of millions of dental patients.

If you believe your personal or protected health information may have been exposed:

• Carefully review any notice or communication you receive from Gargle or your dental provider.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about the company, visit the Gargle website.