Data Breach Summary
32 Pearls, a dental practice based in Washington, has notified patients of a data security incident that may have compromised personal and medical information following a recent ransomware attack. While there is no evidence that the compromised data has been misused, the organization is offering free identity protection services and encouraging affected individuals to take precautionary measures.
On May 22, 2025, 32 Pearls discovered that malicious software had encrypted certain files on its internal systems. Upon discovery, the organization immediately launched an investigation with the help of third-party cybersecurity experts.
The investigation determined that an unauthorized actor gained access to a limited number of systems and may have viewed or acquired specific files between May 19 and May 22, 2025. Although there is no confirmation of data misuse, the company has chosen to notify affected individuals out of an abundance of caution.
The impacted systems may have contained the following information:
Full name
Address
Driver’s license number
Social Security number
Medical information
Not every individual’s data was affected in the same way. However, 32 Pearls is notifying all individuals whose information may have been present in the compromised files.
To support impacted patients, the practice is offering 12 months of identity theft protection services through IDX, a ZeroFox Company. These services include:
Credit and CyberScan monitoring
A $1 million identity theft insurance reimbursement policy
Fully managed ID theft recovery support
We are encouraging affected individuals to remain vigilant by monitoring financial statements, credit activity, and health insurance claims. The organization has also provided detailed guidance on additional precautions, including:
Review account statements and report suspicious activity to banks and law enforcement.
Request free annual credit reports from all three major credit bureaus.
Place a fraud alert on your credit report, which notifies creditors to take extra steps to verify your identity.
Consider a security freeze, which restricts access to your credit file unless you lift the freeze using a personal identification number (PIN).
Contact the FTC or state attorney general for more information on identity theft protections.
Following the breach, 32 Pearls faces potential class-action lawsuits from patients alleging negligence in protecting personal data. Data breach lawsuits often claim companies failed to implement adequate security measures or delayed disclosure of breaches, thereby increasing victims’ risk of financial and identity theft damages.
Affected users may be entitled to compensation for costs related to identity monitoring, fraudulent transactions, lost time addressing the breach, and emotional distress.
If you were impacted by the 32 Pearls data breach, you may have the right to seek compensation for the potential harm caused. Class Action U is dedicated to helping data breach victims connect with skilled attorneys who specialize in this area of law and can guide you through the legal process.
Individuals whose personal information was exposed may have valid grounds to join a class action lawsuit, allowing them to pursue restitution.
If your data was compromised, you could be entitled to compensation for:
Loss of privacy
Time spent resolving the breach
Out-of-pocket expenses
Emotional distress
By pursuing a class action lawsuit, you not only have the opportunity to recover damages but also help hold 32 Pearls accountable, potentially prompting them to strengthen their security measures. Reach out to Class Action U today to find out if you qualify for a data breach class action and learn more about the compensation you may be entitled to.
©2024 ClassActionU
