SpaceX launched a total of 21 satellites on Tuesday night, including "the first six Starlink satellites with Direct to Cell capabilities that enable mobile network operators around the world to provide seamless global access to texting, calling, and browsing wherever you may be on land, lakes, or coastal waters without changing hardware or firmware. The enhanced Starlink satellites have an advanced modem that acts as a cellphone tower in space, eliminating dead zones with network integration similar to a standard roaming partner," the company said. Ars Technica reports: Besides T-Mobile in the US, several carriers in other countries have signed up to use the direct-to-cell satellites. SpaceX said the other carriers are Rogers in Canada, KDDI in Japan, Optus in Australia, One NZ in New Zealand, Salt in Switzerland, and Entel in Chile and Peru. While SpaceX CEO Elon Musk wrote that the satellites will "allow for mobile phone connectivity anywhere on Earth," he also described a significant bandwidth limit. "Note, this only supports ~7Mb per beam and the beams are very big, so while this is a great solution for locations with no cellular connectivity, it is not meaningfully competitive with existing terrestrial cellular networks," Musk wrote.

Starlink's direct-to-cell website says the service will provide text messaging only when it becomes available in 2024, with voice and data service beginning sometime in 2025. Starlink's low Earth orbit satellites will work with standard LTE phones, unlike earlier services that required phones specifically built for satellite use. SpaceX's direct-to-cell satellites will also connect with Internet of Things (IoT) devices in 2025, the company says.

Amazon-owned Wickr is dead, more than a year after reports showed it had become the app of choice for drug traffickers. 404 Media: If you open the encrypted messaging app Wickr Me today, you'll be greeted with a line of red text: "Reconnecting..." Below that, in white text over a black background, the app says "We're having issues connecting to the Wickr Me network. If the problem persists, try restarting your app or contacting support." Closing and reopening the app will not work. There is no point in contacting support either. That's because on December 31, 2023, Wickr Me, the free version of Wickr, was shut down entirely.

Wickr Me is no longer available to download on the Apple App Store or the Google Play Store. The app stopped accepting new users more than a year ago. And now, even current users cannot speak to one another. So ends the story of an app that while never reaching the popularity of other encrypted messaging apps like Signal, nor those that later turned on end-to-end encryption for the masses like WhatsApp, nonetheless played an important role in the adoption of and debate around secure communications.

They create a dedicated desktop icon for your favorite web-based application — a simplified browser that opens to that single URL. Yet while Linux usually offers the same functionality as other operating systems, "Peppermint OS's Ice and its successor Kumo are the only free software versions of Site-Specific Browsers available on Linux," according to Linux magazine.

"Fortunately for those who want this functionality, Peppermint OS is a Debian derivative, and both can be installed on Debian and most other derivatives." Since SSBs first appeared in 2005, they have been available on both Windows and macOS. On Linux, however, the availability has come and gone. On Linux, Firefox once had an SSB mode, but it was discontinued in 2020 on the grounds that it had multiple bugs that were time-consuming to fix and there was "little to no perceived user benefit to the feature." Similarly, Chromium once had a basic SSB menu item, Create Application Shortcut, which no longer appears in recent versions. As for GNOME Web's (Epiphany's) Install Site as Web Application, while it still appears in the menu, it is no longer functional. Today, Linux users who want to try SSBs have no choices except Ice or Kumo.

Neither Ice or Kumo appears in any repository except Peppermint OS's. But because Peppermint OS installs packages from Debian 12 ("bookworm"), either can be installed to Debian or a derivative... To install successfully, at least one of Firefox, Chrome, Chromium, or Vivaldi also must be installed... Because both Ice and Kumo are written in Python, they can be run on any desktop.
The article concludes that Site-Specific Browsers might make more sense "on a network or in a business where their isolation provides another layer of security. Or perhaps the time for SSBs is past and there's a reason browsers have tried to implement them, and then discarded them."

NBC News reports that the Chinese spy balloon that flew across the U.S. in February "used an American internet service provider to communicate, according to two current and one former U.S. official familiar with the assessment."

it used the American ISP connection "to send and receive communications from China, primarily related to its navigation." Officials familiar with the assessment said it found that the connection allowed the balloon to send burst transmissions, or high-bandwidth collections of data over short periods of time.

The Biden administration sought a highly secretive court order from the federal Foreign Intelligence Surveillance Court to collect intelligence about it while it was over the U.S., according to multiple current and former U.S. officials. How the court ruled has not been disclosed. Such a court order would have allowed U.S. intelligence agencies to conduct electronic surveillance on the balloon as it flew over the U.S. and as it sent and received messages to and from China, the officials said, including communications sent via the American internet service provider...

The previously unreported U.S. effort to monitor the balloon's communications could be one reason Biden administration officials have insisted that they got more intelligence out of the device than it got as it flew over the U.S. Senior administration officials have said the U.S. was able to protect sensitive sites on the ground because they closely tracked the balloon's projected flight path. The U.S. military moved or obscured sensitive equipment so the balloon could not collect images or video while it was overhead.
NBC News is not naming the internet service provider, but says it denied that the Chinese balloon had used its network, "a determination it said was based on its own investigation and discussions it had with U.S. officials." The balloon contained "multiple antennas, including an array most likely able to collect and geolocate communications," according to reports from a U.S. State Depratment official cited by NBC News in February. "It was also powered by enormous solar panels that generated enough power to operate intelligence collection sensors, the official said.

Reached for comment this week, a spokesperson for the Chinese Embassy in Washington told NBC News that the balloon was just a weather balloon that had accidentally drifted into American airspace.

Mint Mobile has disclosed a new data breach that exposed the personal information of its customers, including data that can be used to perform SIM swap attacks. From a report: Mint is a mobile virtual network operator (MVNO) offering budget, pre-paid mobile plans. T-Mobile has proposed paying $1.3 billion to purchase the company. The company began notifying customers on December 22nd via emails titled "Important information regarding your account," stating that they suffered a security incident and a hacker obtained customer information.

"We are writing to inform you about a security incident we recently identified in which an unauthorized actor obtained some limited types of customer information," warns the Mint Mobile data breach notification. "Our investigation indicates that certain information associated with your account was impacted."

"10 years later, the demise of Google Reader still stings," writes PC Magazine. But "Time marches on and corporate priorities shift. Here are the products and services that took a final bow in 2023..."

Some of the highlights? 'Clubhouse' Clones
In the early days of the pandemic, when Zoom happy hours and sourdough starters proliferated, Clubhouse burst onto the scene with an app that facilitated audio-only chats between groups large and small. Tech giants quickly churned out their own Clubhouse clones, but these party-line throwbacks were not long for this world. Facebook was the first to go, ditching its Live Audio Rooms in December 2022, but 2023 also saw the end of Reddit Talk, Spotify Live, and Amazon's live radio DJ Amp app. [X Spaces is still around]

Amazon Smile
Launched in 2013, AmazonSmile saw Amazon donate 0.5% of the price of eligible purchases made through smile.amazon.com to charity, with consumers able to choose from over a million charitable organizations to support. On Feb. 20, however, the program shut down because it "has not grown to create the impact that we had originally hoped," Amazon said at the time.

NFTs on Facebook and Instagram
Remember non-fungible tokens (NFTs)? Somehow, crypto bros convinced people to spend big bucks on what are essentially JPEGs. (Don't try to convince me otherwise.) Meta got in on the action in 2022, allowing Instagram users to create NFTs and Facebook users to share them. It didn't exactly set either social network on fire and Meta said in March it would be "winding down digital collectibles."

Cortana on Windows
In June, AI claimed its latest victim by coming after Microsoft's Cortana. The voice assistant never really made a splash compared to Amazon's Alexa or Apple's Siri, and with the launch of Bing Chat (now Copilot), Microsoft removed Cortana as a built-in app on Windows.
Also on the list are Blizzard's Overwatch League, third-party Reddit clients, and Venmo as a payment option on Amazon (effective this January 10).

Looking further into the future, Gmail's Basic HTML View disappears in 2024, while Wordpad will eventually be removed in an unspecified future release of Windows.

An anonymous reader shared this report from Reuters: In February, a Canadian cybersecurity firm delivered an ominous forecast to the U.S. Department of Defense. America's secrets — actually, everybody's secrets — are now at risk of exposure, warned the team from Quantum Defen5e (QD5). QD5's executive vice president, Tilo Kunz, told officials from the Defense Information Systems Agency that possibly as soon as 2025, the world would arrive at what has been dubbed "Q-day," the day when quantum computers make current encryption methods useless. Machines vastly more powerful than today's fastest supercomputers would be capable of cracking the codes that protect virtually all modern communication, he told the agency, which is tasked with safeguarding the U.S. military's communications.

In the meantime, Kunz told the panel, a global effort to plunder data is underway so that intercepted messages can be decoded after Q-day in what he described as "harvest now, decrypt later" attacks, according to a recording of the session the agency later made public. Militaries would see their long-term plans and intelligence gathering exposed to enemies. Businesses could have their intellectual property swiped. People's health records would be laid bare... One challenge for the keepers of digital secrets is that whenever Q-day comes, quantum codebreakers are unlikely to announce their breakthrough. Instead, they're likely to keep quiet, so they can exploit the advantage as long as possible.
The article adds that "a scramble is on to protect critical data. Washington and its allies are working on new encryption standards known as post-quantum cryptography... Beijing is trying to pioneer quantum communications networks, a technology theoretically impossible to hack, according to researchers...

"In a quantum communications network, users exchange a secret key or code on subatomic particles called photons, allowing them to encrypt and decrypt data. This is called quantum key distribution, or QKD."

India is testing AI to build climate models to improve weather forecasting as torrential rains, floods and droughts proliferate across the vast country, a top weather official said. From a report: Global warming has triggered more intense clashes of weather systems in India in recent years, increasing extreme weather events, which the independent Centre for Science and Environment estimates have killed nearly 3,000 people this year. Weather agencies around the world are focussing on AI, which can bring down cost and improve speed, and which Britain's Met Office says could "revolutionise" weather forecasting, with a recent Google-funded model found to have outperformed conventional methods.

Accurate weather forecasting is particularly crucial in India, a country of 1.4 billion people, many impoverished, and the world's second-largest producer of rice, wheat and sugar. The India Meteorological Department (IMD) provides forecasts based on mathematical models using supercomputers. Using AI with an expanded observation network could help generate higher-quality forecast data at lower cost. The department expects the AI-based climate models and advisories it is developing to help improve forecasts, K.S. Hosalikar, head of climate research and services at IMD, told Reuters.

An anonymous reader quotes a report from the Los Angeles Times: It was the late 1980s when Gary Mund felt his pinky tremble. At first it seemed like a random occurrence, but pretty quickly he realized something was seriously wrong. Within two years, Mund -- a crew worker with the Eastern Municipal Water District in Riverside County -- was diagnosed with Parkinson's disease. The illness would eventually consume much of his life, clouding his speech, zapping most of his motor skills and taking away his ability to work and drive. "It sucks," said Mund, 69. He speaks tersely, because every word is a hard-won battle. "I was told the herbicide wouldn't hurt you."

The herbicide is paraquat, an extremely powerful weed killer that Mund sprayed on vegetation as part of his job from about 1980 to 1985. Mund contends the product is responsible for his disease, but the manufacturer denies there is a causal link between the chemical and Parkinson's. Paraquat is manufactured by Syngenta, a Swiss-based company owned by the Chinese government. The chemical is banned in at least 58 countries -- including China and Switzerland -- due to its toxicity, yet it continues to be a popular herbicide in California and other parts of the United States. But research suggests the chemical may cross the blood-brain barrier in a manner that triggers Parkinson's disease, a progressive, neurodegenerative disorder that affects movement. Now, Mund is among thousands of workers suing Syngenta seeking damages and hoping to see the chemical banned.

Since 2017, more than 3,600 lawsuits have been filed in state and federal courts seeking damages from exposure to paraquat products, according to Syngenta's 2022 financial report (PDF). [...] Paraquat is 28 times more toxic than another controversial herbicide, Roundup, according to a report from the Pesticide Action Network. (Roundup has been banned in several parts of California, including a 2019 moratorium by the Los Angeles County Board of Supervisors forbidding its use by county departments.) Paraquat also has other known health effects. It is listed as "highly toxic" on the U.S. Environmental Protection Agency's website, which says that "one small sip can be fatal and there is no antidote." The EPA is currently reviewing paraquat's approval status. However, both the EPA and Syngenta cited a 2020 U.S. government Agricultural Health Study that found there is no clear link between paraquat exposure and Parkinson's disease. A 2021 review of reviews similarly found that there is no causal relationship.

Velcroman1 writes: Intel's new generation of "Meteor Lake" mobile CPUs herald a new age of "AI PCs," computers that can handle inference workloads such as generating images or transcribing audio without an Internet connection. Officially named "Intel Core Ultra" processors, the chips are the first to feature an NPU (neural processing unit) that's purpose-built to handle AI tasks. But there are few ways to actually test this feature at present: software will need to be rewritten to specifically direct operations at the NPU.

Intel has steered testers toward its Open Visual Inference and Neural Network Optimization (OpenVINO) AI toolkit. With those benchmarks, Tom's Hardware tested the new Intel chips against AMD -- and surprisingly, AMD chips often came out on top, even on these hand-selected benchmarks. Clearly, optimization will take some time!

An anonymous reader quotes a report from ZDNet: Long before Facebook existed, or even before the Internet, there was Usenet. Usenet was the first social network. Now, with Google Groups abandoning Usenet, this oldest of all social networks is doomed to disappear. Some might say it's well past time. As Google declared, "Over the last several years, legitimate activity in text-based Usenet groups has declined significantly because users have moved to more modern technologies and formats such as social media and web-based forums. Much of the content being disseminated via Usenet today is binary (non-text) file sharing, which Google Groups does not support, as well as spam." True, these days, Usenet's content is almost entirely spam, but in its day, Usenet was everything that Twitter and Reddit would become and more.

In 1979, Duke University computer science graduate students Tom Truscott and Jim Ellis conceived of a network of shared messages under various topics. These messages, also known as articles or posts, were submitted to topic categories, which became known as newsgroups. Within those groups, messages were bound together in threads and sub-threads. [...] In 1980, Truscott and Ellis, using the Unix to Unix Copy Protocol (UUCP), hooked up with the University of North Carolina to form the first Usenet nodes. From there, it would rapidly spread over the pre-Internet ARPANet and other early networks. These messages would be stored and retrieved from news servers. These would "peer" to each other so that messages to a newsgroup would be shared from server to server and to user to user so that within hours, your messages would reach the entire networked world. Usenet would evolve its own network protocol, Network News Transfer Protocol (NNTP), to speed the transfer of these messages. Today, the social network Mastodon uses a similar approach with the ActivityPub protocol, while other social networks, such as Threads, are exploring using ActivityPub to connect with Mastodon and the other social networks that support ActivityPub. As the saying goes, everything old is new again.

[...] Usenet was never an organized social network. Each server owner could -- and did -- set its own rules. Mind you, there was some organization to begin with. The first 'mainstream' Usenet groups, comp, misc, news, rec, soc, and sci hierarchies, were widely accepted and disseminated until 1987. Then, faced with a flood of new groups, a new naming plan emerged in what was called the Great Renaming. This led to a lot of disputes and the creation of the talk hierarchy. This and the first six became known as the Big Seven. Then the alt groups emerged as a free speech protest. Afterward, fewer Usenet sites made it possible to access all the newsgroups. Instead, maintainers and users would have to decide which one they'd support. Over the years, Usenet began to decline as discussions were replaced both by spam and flame wars. Group discussions were also overwhelmed by flame wars. "If, going forward, you want to keep an eye on Usenet -- things could change, miracles can happen -- you'll need to get an account from a Usenet provider," writes ZDNet's Steven Vaughan-Nichols. "I favor Eternal September, which offers free access to the discussion Usenet groups; NewsHosting, $9.99 a month with access to all the Usenet groups; EasyNews, $9.98 a month with fast downloads, and a good search engine; and Eweka, 9.50 Euros a month and EU only servers."

"You'll also need a Usenet client. One popular free one is Mozilla's Thunderbird E-Mail client, which doubles as a Usenet client. EasyNews also offers a client as part of its service. If you're all about downloading files, check out SABnzbd."

Flipboard, the social media magazine and news app, announced that it is starting to switch its user accounts to ActivityPub, a technology developed by the World Wide Web Consortium that makes social networks interoperable, "connecting everything to a single social graph and content-sharing system," reports The Verge. From the report: Right now, only 25 accounts have been federated with ActivityPub, but by March Flipboard says it plans to allow anyone on the platform to open their account to the fediverse and allow any Flipboard user to follow any fediverse account from within the Flipboard app. At that point, Flipboard will essentially be an ActivityPub-based platform like Mastodon or Pixelfed but with an interface designed for reading articles instead of bite-sized posts. It'll be the biggest thing in the fediverse -- at least until Threads shows up for real.

"Basically, we're in the process of replacing our whole social back-end with ActivityPub," says Flipboard CEO Mike McCue. "I think Flipboard is going to be the first mainstream consumer service that existed in a walled garden that switches over to ActivityPub."

Researchers from the City University of Hong Kong have developed a special antenna that can control all five important aspects of electromagnetic waves using computer software. Interesting Engineering reports: The antenna, which they have named 'microwave universal metasurface antenna,' is capable of dynamically, simultaneously, independently, and precisely manipulating all the essential properties of electromagnetic waves through software control. [...] The antenna adjusts how strong the waves are, their timing, frequency, direction, and even the way they vibrate, all at the same time. It's the first time anyone has made an antenna that can do all these things simultaneously, marking a significant breakthrough in this field.

The antenna is special because it can be used in advanced information systems, like the ones we might have in the future. It's great for handling a lot of data and keeping that data very safe. It can also transfer power wirelessly, meaning it can charge devices without physical connections. One cool thing about this antenna is that it can control the direction of its signals, adding an extra layer of privacy and security. This makes it a good choice for communication systems where we want to ensure nobody can eavesdrop or secretly listen in on our conversations.

Although demonstrated in the microwave band, the UMA's concept can be expanded to terahertz frequencies using specific technologies, enabling applications in augmented reality, holography, integrated sensing and communications for 6G, quantum optics, and quantum information science, noted the researchers in their study. The study has been published in the journal Nature Communications.

China on Friday proposed a four-tier classification to help it respond to data security incidents, highlighting Beijing's concern with large-scale data leaks and hacking within its borders. From a report: The plan, which is currently soliciting opinions from the public, proposes a four-tier, colour-coded system depending on the degree of harm inflicted upon national security, a company's online and information network, or the running of the economy.

According to the plan, incidents that involve losses surpassing 1 billion yuan ($141 million) and affect the personal information of over 100 million people, or the "sensitive" information of over 10 million people, will be classed as "especially grave," to which a red warning must be issued. The plan demands that in response to red and orange warnings, the involved companies and relevant local regulatory authorities must establish a 24-hour work rota to address the incident and MIIT must be notified of the data breach within ten minutes of the incident happening, among other measures.

Meta CEO Mark Zuckerberg announced that Threads is now available to users in the European Union. "Today we're opening Threads to more countries in Europe," wrote Zuckerberg in a post on the platform. "Welcome everyone." MacRumors reports: The move comes five months after the social media network launched in most markets around the world, but remained unavailable to EU-based users due to regulatory hurdles. [...] In addition to creating a Threads profile for posting, users in the EU can also simply browse Threads without having an Instagram account, an option likely introduced to comply with legislation surrounding online services.

The expansion into a market of 448 million people should see Threads' user numbers get a decent boost. Meta CEO Mark Zuckerberg said on a company earnings call in October that Threads now has "just under" 100 million monthly users. Since its launch earlier this year it has gained a web app, an ability to search for posts, and a post editing feature.

The Economist reports: "Shake, shake, shake, shake," Taylor Swift sings from the stage of Lumen Field in Seattle at 10.35 in the evening on July 22nd. The fans respond, enthusiastically; the stadium duly shakes; a nearby seismometer takes note. To pop aficionados "Shake it off" is an empowering up-tempo anthem played at 160 beats per minute. To the Pacific Northwest Seismic Network, which is designed to monitor earthquakes, it is a 2.6 hertz signal in which the amplitude of the acceleration was as large as one centimetre per second, per second.

The well-situated seismometer first came to public attention in January 2011, when it recorded the response of fans of the Seattle Seahawks, an American football team, to a magnificent touchdown by Marshawn Lynch, a running back known as "Beast Mode." The "Beast Quake" went down in local sporting history. When Ms Swift came to town for two nights of her Eras tour, Jacqueline Caplan-Auerbach, a geology professor at Western Washington University, used the opportunity to learn more about how events in the stadium shake its surroundings. On December 11th she presented some of her conclusions at the American Geophysical Union's autumn meeting in San Francisco.

[...] Dr Caplan-Auerbach wanted to see whether such resonant amplification might also be at play elsewhere, and to distinguish between the effect of the music itself and the audience's response. Her concert-night data showed two distinct sets of signals, one in higher frequencies (30-80hz), one in lower frequencies (1-8hz). The higher-frequency signals were present during the sound check, when the band were on stage but the stadium empty, and absent during the concerts' "surprise songs," played without the band by Ms Swift alone. The lower frequencies were absent when the audience had yet to arrive. Clearly those higher frequencies were from the music itself.

Bill Toulas reports via BleepingComputer: Miklos Daniel Brody, a cloud engineer, was sentenced to two years in prison and a restitution of $529,000 for wiping the code repositories of his former employer in retaliation for being fired by the company. According to the U.S. Department of Justice (DoJ) announcement, Brody was fired on March 11, 2020, from First Republic Bank (FRB) in San Francisco, where he worked as a cloud engineer. The court documents state that Brody's employment was terminated after he violated company policies by connecting a USB drive containing pornography to company computers.

Following his dismissal, Brody allegedly refused to return his work laptop and instead used his still-valid account to access the bank's computer network and cause damages estimated to be above $220,000. "Among other things, Brody deleted the bank's code repositories, ran a malicious script to delete logs, left taunts within the bank's code for former colleagues, and impersonated other bank employees by opening sessions in their names," describes the U.S. DOJ announcement. "He also emailed himself proprietary bank code that he had worked on as an employee, which was valued at over $5,000."

After the incident, Brody falsely reported to the San Francisco Police Department that the FRB-issued laptop had been stolen from his car. He continued to uphold this story when interviewed by United States Secret Service agents following his arrest in March 2021. Eventually, in April 2023, Brody pleaded guilty to lying about the laptop and to two charges concerning violation of the Computer Fraud and Abuse Act. In addition to the two-year prison term and the payment of the restitution, Brody will serve three years of supervised release.

According to Reuters, Ukraine's biggest mobile network was hit by "what appeared to be the largest cyber attack of the war with Russia so far," severing mobile and internet services for millions of people and knocking out the air raid alert system in parts of Kyiv. From the report: Kyivstar has 24.3 million mobile subscribers - more than half of Ukraine's population - as well as over 1.1 million home internet subscribers. Its CEO Oleksandr Komarov said the attack was "a result of" the war with Russia, although he did not say which Russian body he believed to be responsible, and that the company's IT infrastructure had been "partially destroyed." "(The attack) significantly damaged (our) infrastructure, limited access, we could not counter it at the virtual level, so we shut down Kyivstar physically to limit the enemy's access," Komarov said.

A source close to Ukraine's cyber defense also said that Russia was suspected to be the source of the attack, but no specific group had been identified. "It's definitely a state actor," said the source, who asked not to be identified because of the delicacy of the issue, adding that data cable interception showed "a lot of Russian controlled traffic directed at these networks." "There's no ransom. It's all destruction. So it's not a financially motivated attack," said the source. Ukrainian officials said that air raid alert systems in more than 75 settlements in the central Kyiv region were affected by the cyber attack.

Komarov said two databases containing customer data had been damaged and were currently locked. "The most important thing is that the personal data of users has not been compromised," Kyivstar said in its statement, promising to compensate customers for loss of access to services. Meanwhile, Ukraine's defense intelligence director (GUR) said it infected thousands of servers belonging to Russia's state tax service with malware, and destroyed databases and backups. "According to GUR's statement published Tuesday, the attack led to the 'complete destruction' of the agency's infrastructure," reports The Record. "GUR claimed they destroyed configuration files 'which for years ensured the functioning of Russia's tax system.'"

An anonymous reader quotes a report from Reuters: China's Huawei will start building its mobile phone network equipment factory in France next year, a source familiar with the matter said, pressing ahead with its first plant in Europe even as some European governments curb the use of the firm's 5G gear. The company outlined plans for the factory with an initial investment of 200 million euros ($215.28 million) in 2020, but the roll-out was delayed by the COVID-19 pandemic, the source said on Monday. The source did not give a timeline for when the factory in Brumath, near Strasbourg, will be up and running. A French government source said the site was expected to open in 2025. Further reading: 'How Washington Chased Huawei Out of Europe'

An anonymous reader quotes a report from TechCrunch: Kentucky-based nonprofit healthcare system Norton Healthcare has confirmed that hackers accessed the personal data of millions of patients and employees during an earlier ransomware attack. Norton operates more than 40 clinics and hospitals in and around Louisville, Kentucky, and is the city's third-largest private employer. The organization has more than 20,000 employees, and more than 3,000 total providers on its medical staff, according to its website. In a filing with Maine's attorney general on Friday, Norton said that the sensitive data of approximately 2.5 million patients, as well as employees and their dependents, was accessed during its May ransomware attack.

In a letter sent to those affected, the nonprofit said that hackers had access to "certain network storage devices between May 7 and May 9," but did not access Norton Healthcare's medical record system or Norton MyChart, its electronic medical record system. But Norton admitted that following a "time-consuming" internal investigation, which the organization completed in November, Norton found that hackers accessed a "wide range of sensitive information," including names, dates of birth, Social Security numbers, health and insurance information and medical identification numbers. Norton Healthcare says that, for some individuals, the exposed data may have also included financial account numbers, driver licenses or other government ID numbers, as well as digital signatures. It's not known if any of the accessed data was encrypted.

Norton says it notified law enforcement about the attack and confirmed it did not pay any ransom payment. The organization did not name the hackers responsible for the cyberattack, but the incident was claimed by the notorious ALPHV/BlackCat ransomware gang in May, according to data breach news site DataBreaches.net, which reported that the group claimed it exfiltrated almost five terabytes of data. TechCrunch could not confirm this, as the ALPHV website was inaccessible at the time of writing.