What Happened in the Park Dental Research Data Breach?
Park Dental Research Corp., a dental implant company, has disclosed a data breach that compromised sensitive personal information. The Park Dental Research data breach occurred on or about April 29, 2026, according to the company’s notification. As a result, names, Social Security numbers, and other personal details were exposed to unauthorized parties.
The company identified the incident as a ransomware attack. A group known as Interlock claimed responsibility for the attack on May 11, 2026. This group posted on the dark web, stating it had obtained 260 gigabytes of data from Park Dental Research. The stolen data reportedly included partner and customer records, financial documents, and login credentials.
Following discovery of the intrusion, Park Dental Research launched an investigation into the scope of the incident. The company worked to determine exactly which files and individuals were affected. Because ransomware groups often publish stolen data to pressure victims, the public posting by Interlock served as key evidence that data had actually been taken, not just accessed.
The company reported the breach to the Massachusetts Office of Consumer Affairs and Business Regulation on June 26, 2026. This regulatory filing came after Park Dental Research completed its internal review of affected records. In addition, the company began sending written notification letters to affected individuals on June 24, 2026.
Who was affected?
The breach may affect a range of individuals connected to Park Dental Research. This includes employees, business partners, and customers whose information was stored in the company’s systems. Because the stolen data included I-9 employment verification documents and compensation information, current and former employees appear to be significantly impacted.
The exact number of affected individuals has not been publicly disclosed. However, the presence of partner and customer data alongside employee records suggests the breach reached multiple groups connected to the company’s operations. Given that passport information and driver’s license details were involved, the exposure likely extends beyond a single office or department.
At this time, there is no indication in the available information about whether minors were among those affected. Still, anyone who worked for, partnered with, or did business with Park Dental Research should consider themselves potentially at risk until they receive official confirmation either way.
What Information Was Potentially Exposed?
The data confirmed to be compromised in this incident spans several highly sensitive categories. This combination of financial, identity, and employment data creates significant risk for those affected. Below is a list of the specific information types confirmed exposed.
- Full names
- Social Security numbers
- Dates of birth
- Home addresses
- Compensation information
- Bank account information
- Passport information
- I-9 employment verification documents
- Driver’s license information
Because Social Security numbers and financial account details were exposed, affected individuals face a heightened risk of identity theft. Criminals can use this data to open new credit accounts, file fraudulent tax returns, or apply for loans in someone else’s name. For example, a stolen Social Security number combined with a date of birth gives fraudsters nearly everything needed to impersonate a victim.
In addition, the exposure of passport and driver’s license information raises the risk of document fraud. This means criminals could potentially create fake identification documents using stolen data. Furthermore, bank account information exposure could lead directly to unauthorized withdrawals or fraudulent transactions if accounts are not monitored closely.
What is the company doing?
Park Dental Research responded to the breach by launching an investigation to understand the scope of the compromise. The company also notified relevant state regulators, including the Massachusetts Office of Consumer Affairs and Business Regulation. This regulatory disclosure reflects the company’s legal obligation to report breaches involving residents’ personal information.
To help affected individuals, Park Dental Research arranged complimentary identity theft protection services through IDX. These services include 24 months of credit and CyberScan monitoring. They also include a $1,000,000 insurance reimbursement policy and fully managed identity theft recovery services.
Affected individuals can enroll in these services by visiting the IDX enrollment page, calling the company’s dedicated phone line, or scanning a QR code included in their notification letter. The enrollment deadline is September 24, 2026, which falls 90 days from the date of the notification letter. As a result, affected individuals should act promptly to avoid missing this window.
The company also established a dedicated call center to answer questions related to the incident. Representatives are available Monday through Friday from 9 a.m. to 9 p.m. Eastern Time, excluding holidays. This call center will remain available for 90 days from the date of the notification letter.
What Should Affected Individuals Do?
Enroll in the Free Identity Protection Services
Affected individuals should strongly consider enrolling in the complimentary IDX identity protection services offered by Park Dental Research. These services include credit monitoring, CyberScan monitoring, and a substantial insurance reimbursement policy. Because enrollment is free and time-limited, acting quickly ensures you don’t lose this protection.
To enroll, visit the IDX enrollment page or call the number provided in your notification letter. If you’re unsure whether you received a letter, contact the dedicated call center directly. This proactive step can help detect suspicious activity early and provide financial protection if fraud occurs.
Place a Fraud Alert or Credit Freeze
Given that Social Security numbers and financial account information were exposed, placing a fraud alert or credit freeze is a wise precaution. A fraud alert requires creditors to verify your identity before opening new accounts in your name. This makes it much harder for criminals to use your stolen information.
A credit freeze goes a step further by restricting access to your credit report entirely. You can request a freeze for free from each of the three major credit bureaus: Equifax, Experian, and TransUnion. Because freezes must be lifted temporarily when you apply for new credit, plan ahead if you expect to need a loan or credit card soon.
Monitor Your Credit Reports and Financial Accounts
Regularly reviewing your credit reports can help you catch fraudulent activity before it causes serious damage. You’re entitled to a free credit report from each major bureau once per year through AnnualCreditReport.com. In addition, many banks offer free account alerts that notify you of unusual transactions in real time.
Because bank account information was part of this breach, it’s especially important to review your statements closely. Look for small, unfamiliar charges, as criminals sometimes test stolen account numbers with tiny transactions first. If you notice anything suspicious, report it to your bank immediately.
Watch for Phishing Attempts and Scams
After a data breach, criminals often use stolen information to craft convincing phishing emails or phone calls. These messages may impersonate Park Dental Research, IDX, or even government agencies. Therefore, always verify the sender before clicking links or providing any personal information.
Be especially cautious of messages that create urgency or ask you to confirm sensitive details like your Social Security number. Legitimate companies rarely ask for this information over email or text. If you receive a suspicious message, contact the organization directly using a verified phone number rather than replying.
Consider Consulting a Data Breach Attorney
Because this breach involved highly sensitive data like Social Security numbers, passport information, and driver’s license details, affected individuals may want to explore their legal options. A data breach attorney can help you understand whether you qualify for compensation. Many offer free consultations to evaluate your specific situation.
Additionally, an attorney can help you determine whether joining a class action lawsuit makes sense for your circumstances. This is particularly relevant if you experience financial losses or spend significant time resolving identity theft issues. Taking this step costs nothing upfront and could help you recover damages related to the breach.
More Information
Massachusetts Office of Consumer Affairs and Business Regulation
