Dish Network notifies Maine AG about ransomware attack
Dish Network notified the Maine Attorney General of a data breach that occurred in February, informing them that approximately 296,000 people were affected by the incident. Dish Network disclosed the breach facts to the Attorney General via Lori Kalani, a shareholder at Cozen O’Connor LLP who served as outside counsel for the corporation.
According to the statistics provided, a total of 296,851 people were impacted, with 529 of them being Maine residents. Dish Network also followed process by informing consumer reporting authorities. The breach happened over two days, from February 22, 2023 to February 23, 2023, and was detected by Dish Network on May 8, 2023.
Affected persons were contacted between May 15, 2023, and May 18, 2023, according to the statement. The company verified that no other breach notifications had been received in the previous 12 months. It added that it has given two years of identity monitoring services through TransUnion in an effort to aid affected consumers. Credit monitoring, credit reporting, and credit services are all part of this service.
The security breach first came to light in late February, when Dish Network’s websites and applications encountered service delays. The corporation eventually stated that the disruption was caused by a ransomware assault, conceding that personal data might have been taken. During this time, Dish Network’s websites, apps, and several other services were briefly unavailable. Concerned individuals speculated about a hack, but the corporation refused to acknowledge these accusations, originally describing it as an internal failure.
Dish Network, on the other hand, disclosed the hack in a report with the US Securities and Exchange Commission (SEC). It comforted anyone who had been impacted, saying, “We are not aware of any misuse of your information, and we have received confirmation that the extracted data has been deleted.”
According to sources, the attack was carried out by the Russia-linked BlackBasta ransomware gang. Dish Network’s choice to pay the ransom may explain why it isn’t included on its leak website.
The sources for this piece include an article in SecurityWeek.