ShellCodeX Breach Report
MMG Fusion Data Breach
mmgfusion.com
Verified breach
Passwords exposed
Accounts exposed
2,660,295
Breach date
20 Dec 2020
Added to tracker
07 Aug 2021
Data classes
9
What happened
In December 2020, the dental practice management service MMG Fusion was the victim of a data breach which exposed 2.6M unique email addresses. The data also included patient appointments, names, phone numbers, dates of birth, genders and physical addresses. A small number of records also included passwords stored as bcrypt hashes.
Exposed data
Appointments
Dates of birth
Email addresses
Genders
Marital statuses
Names
Passwords
Phone numbers
Physical addresses
Recommended actions
- Change your MMG Fusion password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing MMG Fusion โ attackers weaponise breach data quickly.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
- Exposed identity data raises identity-theft risk โ consider credit monitoring or a credit freeze.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP