Minnesota Orthodontics Data Breach Notice Follows Ransomware Attack

On February 26, 2025, Minnesota Orthodontics, based in the Twin Cities, discovered unauthorized access to its network. The incident was quickly escalated, and cybersecurity specialists were engaged to investigate. By April 18, 2025, it was confirmed that a third-party actor had copied sensitive data from the company’s systems without authorization.

The ransomware group BianLian claimed responsibility for the attack, and evidence of the breach—including financial records, HR data, patient PII (personally identifiable information), PHI (protected health information), and internal communications—was posted on the dark web on March 7, 2025.

The types of information potentially exposed in this breach are extensive; affected data types may include name, date of birth, financial records, health forms, insurance coverage information, employment details, and treatment information.

The breach is still under investigation, and the total number of affected individuals has not yet been disclosed. According to dark web sources, the attackers claim to have obtained not only patient data but also information about partners, vendors, and providers, as well as internal and external email correspondence and database exports.

Minnesota Orthodontics's response

In response to the breach, Minnesota Orthodontics immediately secured its systems and began a comprehensive investigation with the help of cybersecurity experts. The company has also notified federal law enforcement and relevant government regulators about the incident. As a precaution, Minnesota Orthodontics is reviewing all potentially affected files to determine the full scope and will send direct notifications to impacted individuals once the review is complete.

To support those who may be affected, the company has published a detailed notice on its website, which outlines steps individuals can take to protect themselves. These steps include monitoring account statements, credit reports, and explanations of benefits for unusual activity. The notice also provides information on placing fraud alerts or credit freezes with major credit bureaus and offers contact details for further assistance.

Individuals seeking more information can call Minnesota Orthodontics toll-free at 1-888-795-0377, Monday through Friday, 9:00 a.m. to 5:00 p.m. Central Time. The full notice and additional guidance can be found in the official Minnesota Orthodontics Data Privacy Event Notice.

Given that this was a ransomware attack by BianLian, it is especially important for those potentially affected to remain vigilant for signs of identity theft or fraud. Monitoring your credit, considering a credit freeze, and reporting any suspicious activity to your healthcare provider, insurance company, or financial institution are strongly recommended.

More information about the company and its services can be found on the Minnesota Orthodontics website.