News Education Local News Nation & World New Mexico

Axis Health System target of cyberattack; ransomware group demands $1.6 million

Nonprofit working with private investigators; status of patient data remains unknown
Axis Health System is investigating a cyberattack. The operator of mental health and substance use treatment facilities across Southwest Colorado would not confirm when the attack was discovered. (Jerry McBride/Durango Herald file)

Axis Health System, the operator of mental health and substance use treatment facilities across Southwest Colorado, is investigating a cyberattack. Whether patient data was breached remains unknown as Axis remains tight-lipped on the incident.

“I can confirm that Axis experienced a cyber incident,” said Axis spokeswoman Haley Leonard-Saunders in an email to The Durango Herald. “Upon discovery, Axis quickly followed its incident response protocol and took immediate steps to stop the unauthorized activity and investigate the nature and scope of the incident.”

Incident protocol was followed, the FBI was notified and a private contractor is investigating the incident, Leonard-Saunders said. A notice on Axis’ website states that if it is determined that patient data was impacted, affected individuals will be notified directly by mail.

Axis’ patient portal is nonoperational for reasons unrelated to the cyber attack. All impacted systems were brought back online by Tuesday morning.

Leonard-Saunders said no other details were available while the investigation was ongoing, and there was no estimate on when the investigation would conclude.

Rhysida, a ransomware group, claimed responsibility for the attack, according to a post on X, formerly known as Twitter, by the cybersecurity firm HackManac. The post includes a screenshot of a notice allegedly posted by Rhysida demanding 25 bitcoin – approximately $1.6 million – in ransom for Axis’ data by Thursday. Details of what data the group may have were not specified.

rschafir@durangoherald.com



Reader Comments