Aspen Dental Announces Data Breach Following April 2023 Ransomware Attack | Console and Associates, P.C. | #ransomware | #cybercrime

On February 22, 2024, APEO, LLC, better known as Aspen Dental, filed a notice of data breach with the Attorney General of Maine after discovering that an April 2023 ransomware attack compromised certain information on the company’s computer network. In this notice, Aspen Dental explains that the incident resulted in an unauthorized party being able to access employee’ sensitive information. Aspen Dental has also confirmed that patient information was leaked. Upon completing its investigation, Aspen Dental began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from Aspen Dental, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Aspen Dental data breach. For more information, please see our recent piece on the topic here.

What Caused the Aspen Dental Data Breach?

The Aspen Dental data breach was only recently announced, and more information is expected in the near future. However, Aspen Dental’s filing with the Attorney General of Maine provides some important information on what led up to the breach. According to this source, in April 2023, TAG, which is the parent company of Aspen Dental, experienced a ransomware attack. In response, Aspen Dental secured its systems and then began working with third-party data security specialists to investigate the incident. Ultimately, this investigation confirmed that the ransomware attackers had gained access to the Aspen Dental network, including files containing confidential information.

After learning that sensitive consumer data was accessible to an unauthorized party, Aspen Dental reviewed the compromised files to determine what information was leaked and which consumers were impacted. On December 11, 2023, Aspen Dental confirmed that certain employee information was among that which was accessible to the hackers.

Additionally, Aspen Dental has confirmed reports that the ransomware attack also compromised confidential patient information. These reports indicate that the following patient information was leaked: names, Social Security numbers, driver’s license/state ID information, health information, health insurance information, dates of birth, financial account information, biometric data, and other sensitive information.

On February 22, 2024, Aspen Dental sent out data breach letters to anyone who was affected by the recent data security incident. Unfortunately, the publicly available data breach letter does not indicate what specific data types were leaked. However, the personalized data breach letters sent out by Aspen Dental should provide victims with a list of what information belonging to them was compromised.

More Information About Aspen Dental

Founded in 1988, Aspen Dental is a nationwide dental practice chain headquartered in Syracuse, New York. Aspen Dental, along with WellNow Urgent Care, ClearChoice Dental Implant Centers, Chapter Aesthetic Studios, and AZPetVet, is a part of The Aspen Group. Aspen Dental employs more than 15,000 people and generates approximately $2.3 billion in annual revenue.

Source link


National Cyber Security