Get Free Assessment
    Back to Case Studies
    DENTAL & MEDICAL PRACTICEDocumented Incident

    The Patient Who Discovered the Breach

    $350,000SETTLEMENT
    All recordsENCRYPTED
    HIPAAFINDINGS AGAINST THE PRACTICE

    What Happened

    A patient kept calling Arlington Westend Dental in Indiana to ask for copies of their x-rays. The practice finally admitted it no longer had them. Its systems had been hacked, and the records were gone. That single patient complaint triggered an Indiana Attorney General investigation. It confirmed a ransomware attack had encrypted every record on the affected server, complete with a ransom note, and uncovered serious HIPAA compliance failures. The case settled for $350,000. The practice did not discover its own breach. A patient did.

    Where It Went Wrong

    Healthcare and dental practices are now among the most targeted small businesses because patient records are valuable and protections are often thin. Here, there was no monitoring to detect the attack, no reliable backup to restore the lost records, and no compliance program to prove the practice had done its part. The owner learned the truth from a patient on the phone.

    How Red Door Shield Stops This

    Keep what's valuable secure

    Encrypted, tested backups mean a ransomware attack cannot permanently erase patient records, and endpoint protection stops the encryption before it spreads.

    Inspect what's coming in

    24/7 monitoring detects the intrusion in real time, so the practice learns about an attack from its security partner, not from a patient request for missing files.

    Trust through validation

    Built-in HIPAA compliance mapping and audit-ready evidence demonstrate the practice met its obligations, the exact gap that turned this incident into a six-figure settlement.

    The Takeaway

    The most expensive part of this breach was not the ransomware. It was the missing backup, the missing monitoring, and the missing compliance record. All three are standard in a managed security platform.

    Documented source: Workplace Privacy Report — Dental practice ransomware $350K settlement

    Related Case Studies

    ACCOUNTING FIRM

    When Tax Season Becomes Open Season

    In April 2024, Legacy Professionals LLP, an accounting firm based in Westchester, Illinois, just outside Chicago, was breached by the LockBit 3.0 ransomware group. Over two days, the attackers moved through the firm’s network and quietly copied files before anyone noticed. Those files held names, Social Security numbers, driver’s license numbers, and medical and health insurance details for 216,752 people. That August, the criminals published the stolen data on the dark web. The firm did not finish notifying affected individuals until early 2025, and it now faces class-action lawsuits over the breach and the delay.

    PROPERTY MANAGEMENT

    38 Gigabytes of Tenant Trust, Gone in a Day

    In December 2024, Tri County Property Management, based in Sandwich, Illinois, was breached, with attackers removing roughly 38 gigabytes of data from its systems. Property managers sit on exactly what criminals want: tenant Social Security numbers, bank account and payment records, lease files, and applicant background data. The same pattern played out at Income Property Management, where a single intrusion exposed driver’s licenses, Social Security numbers, dates of birth, medical details, and even passport numbers, and the firm did not notify affected people until more than a year later.

    Don't wait to become a case study.

    Find out exactly where your security stands today with our comprehensive, zero-pressure risk assessment.

    Book Free Assessment