Pecan Tree Dental
Analysis of the Pecan Tree Dental ransomware attack by Sinobi group affecting 13,300 individuals.
Published by the Scrutex.ai Research Team | January 2026
Disclaimer
This advisory is provided for informational and educational purposes only by the Scrutex research team. It is based entirely on publicly available reporting from the sources cited below. Where details are unconfirmed or disputed by the affected organisation, this is noted explicitly. Scrutex does not independently verify internal claims made by affected organisations or threat actors. This advisory should not be interpreted as a confirmed statement of fact regarding any organisation's security posture. Organisations concerned about their own exposure should conduct independent assessments and seek professional legal advice.
At a Glance
Organisation
Pecan Tree Dental
Dental practice in the United States providing general and specialist dental services.
Sector
Healthcare / Dental
Region
United States
Date of Incident
Prior to January 2026 (exact date not disclosed)
Date Disclosed
January 2026
Estimated Impact
13,300 individuals
Data Types Exposed
Protected health information (specific fields not publicly detailed)
Attack Type
Ransomware
Attack Vector
Ransomware deployment by Sinobi group (specific initial access vector not disclosed)
Threat Actor
Sinobi ransomware group
Current Status
Under investigation. HIPAA breach notification filed.
Severity Assessment
Moderate. 13,300 individuals had dental health data exposed by the Sinobi ransomware group, highlighting continued targeting of small dental practices.
What Happened
In January 2026, Pecan Tree Dental disclosed a ransomware attack affecting 13,300 individuals. The Sinobi ransomware group has been linked to the incident.
The compromised data reportedly includes health data. HIPAA breach notification requirements apply.
Timeline
January 2026
Pecan Tree Dental discloses ransomware attack by Sinobi affecting 13,300 individuals
Threat Actor Profile
Sinobi is a lesser-known ransomware group that has been observed targeting small healthcare practices, where security resources are typically limited.
Impact and Risk Assessment
For Affected Individuals
13,300 patients had their dental health data exposed, potentially including treatment records and insurance information.
For Organisations
Small dental practices face proportionally higher impact from ransomware, as the operational and financial costs of response can be devastating for a small business.
Regulatory Context
HIPAA breach notification requirements apply. Small healthcare practices are not exempt from HIPAA compliance obligations.
What Should You Do?
If You Are a Potentially Affected Individual
If you are a patient of Pecan Tree Dental, monitor your explanation of benefits for signs of medical identity fraud.
If You Are a Security or Risk Professional
Small dental and healthcare practices should consider managed security services and cyber insurance to mitigate ransomware risk within their budget constraints.
Learnings and Recommendations
Dental practices are increasingly targeted by ransomware groups due to the sensitive health data they hold combined with typically limited security resources.
Sources
This advisory is provided for informational purposes by the Scrutex.ai research team. It is based on publicly available reporting from the sources cited above. Where details are unconfirmed or disputed, we have noted this accordingly. Scrutex.ai does not independently verify internal claims made by affected organisations. Organisations concerned about their own exposure are encouraged to conduct their own assessments and seek professional advice where needed.
Stay ahead of the next breach
Scrutex monitors dark web sources, breach databases, and threat actor activity continuously, detecting exposure that affects your organisation before it becomes a headline.