On November 18, 2024, Aspen Healthcare Services, a Texas-based healthcare provider, filed a notice of data breach with the Attorney General of Texas, following a ransomware attack that resulted in unauthorized access to sensitive consumer data. The breach, which involved personal information such as names, dates of birth, addresses, insurance IDs, health records, and Social Security numbers, was discovered after the company detected unusual activity on its IT network. Upon investigation, Aspen Healthcare confirmed that certain files containing confidential data were accessed by an unauthorized party.
The attack began on October 22, 2024, when Aspen Healthcare’s systems were targeted by cybercriminals. In response to the threat, the company immediately secured its systems and launched a thorough investigation to assess the impact. During this process, it was determined that consumer information had been compromised, leading Aspen Healthcare to notify both state and federal authorities about the incident. The breach primarily affected individuals whose information was stored in the targeted systems.
Following the discovery of the breach, Aspen Healthcare began sending out data breach notification letters to those affected by the incident. These letters provided recipients with details on what specific information had been compromised, including personal and medical data. The company also urged those impacted to take appropriate steps to protect themselves from potential identity theft and fraud, highlighting the importance of monitoring financial accounts and credit reports.
Aspen Healthcare Services is a provider of hospice, respiratory therapy, and private-duty nursing services in the Dallas/Fort Worth area. The company has been in operation for several years, offering care to individuals in need of specialized health services. While it is still investigating the full scope of the breach, Aspen Healthcare is committed to enhancing its security measures to prevent future incidents. Individuals affected by the breach may seek guidance on protecting themselves from identity theft through legal avenues.
Reference:
